Web Interface (NFuse) URL

Enter the URL of the Web server that hosts your ICA files.

Use the format: [protocol://]host[:port][/path]. For instance, enter the URL of an NFuse server, the Web interface for a Citrix Metaframe Presentation Server, or a Web server from which the device can download Citrix Java applets or Citrix cab files.

Citrix implementation type

Specify which type of Citrix implementation you are using in your environment by selecting one of the following options:

• Java ICA Client with Web Interface (NFuse)—Select this option if you have deployed the Citrix Web Interface for MPS (that is, NFuse) to deliver Java ICA clients.
• Java ICA Client without Web Interface (NFuse)—Select this option if you have deployed a generic Web server to deliver Java ICA clients.
• Non-Java ICA Client with Web Interface (NFuse)—Select this option if you have deployed the Citrix Web Interface for MPS (that is, NFuse) to use any of the different clients (Java, ActiveX, local).
• Non-Java ICA Client without Web Interface (NFuse)—(Read only) If you have deployed a non-Java ICA client without the Citrix Web Interface for MPS (that is, NFuse), you cannot create a Citrix resource profile through this template. Instead, click the Client Application Profile link beneath this option.

Web Interface (NFuse) version

Select the required Citrix version from the drop-down list.

MetaFrame servers

Specify the Metaframe presentation servers to which you want to control access.

Click Add. When specifying servers, you can enter wildcards or IP ranges.

The device uses the values that you enter to automatically create a resource policy that enables access to the necessary resources. They include:

• If you select either Java ICA Client with or without Web Interface, the device creates a Java ACL resource policy that enables Java applets to connect to the specified Metaframe servers.
• If you select Non-Java ICA Client with Web Interface, and then you select ICA client connects over WSAM or JSAM, the device creates a corresponding SAM resource policy that enables users to access the specified Metaframe servers.
• If you select Non-Java ICA Client with Web Interface, and then you select ICA client connects over CTS, the device creates corresponding Terminal Services and Java resource policies that enable users to access the specified Metaframe servers.

Sign applets with uploaded code-signing certificate(s)

Enable this check box to re-sign the specified resources using the certificate uploaded after selecting System > Configuration > Certificates > Code-signing Certificates page.

Note: This option is for Java ICA clients only. Enable this option only if you have deployed Citrix using a Java ICA client.

When you select this option, the device uses all of the “allow” values that you enter in the resource profile’s Web access control autopolicy to automatically create a corresponding code-signing resource policy. Within this policy, the device uses the specified Web resources to create a list of trusted servers.

Configure access to local resources

Enable this check box to allow users to access local resources such as printers and drives through their Citrix Web interface sessions. Select one of the following options after enabling this option:

• Select Connect printers if you want to enable the user to print information from the terminal server to the local printer.
• Select Connect drives if you want to enable the user to copy information from the terminal server to the local client directories.
• Select Connect COM Ports if you want to enable communication between the terminal server and devices on the user’s serial ports.

Autopolicy: Web Access Control

Enable this check box to create a policy that allows or denies users access to the resource specified in the Web Interface (NFuse) URL box. By default, the device automatically creates a policy for you that enables access to the resource and all of its subdirectories.

Roles

Select the roles to which the Citrix resource profile applies.