Version 4.8 of Citrix Receiver for Windows comes with automatic update functionality which is enabled by default. There are a couple of different ways to control the behaviour of the auto-update feature.
The following post describes how to configure SAML authentication with NetScaler as the IdP (Identity Provider) and Microsoft Office 365 as the SP (Service Provider). Going above just using SAML, a mixture of Azure Multi-Factor Authentication, User Certificates, LDAP and Negotiate authentication policies are used for authentication from external and internal locations.
Load Balancing sessions is an important part of the Citrix architecure. It ensures your session is placed on the best available Virtual Desktop Agent. Afterall, you don’t want to end up on a VDA alongside 23 other people when there is another VDA with only 15 users logged on to it. Not only does such a mishap affect you, it affects everyone else who is sharing that server and resources with you.
Starting StoreFront 3.9, it is possible to use SAML authentication direct to StoreFront with ADFS and integrate that with the Citrix Federated Authentication Service. Users authenticate at the Identity Provider, the assertion is sent to StoreFront, a certificate is issued for authenticating to the VDA.