Menu path: Setup > Sessions > Appliance Mode > Caradigm

The Caradigm appliance is integrated from IGEL Linux Version 5.09.100.

  • Caradigm Vault VIP: IP address or host name of the Caradigm authentication server, also referred to as the Vault
  • Caradigm Vault Port: Port number of the Caradigm authentication server (default port: 8443)

    For the certificates that follow, you have to send the certificate files to the client via the file transfer - to the directory wfs/ca-certs/. Three files are needed: the thin client certificate, the thin client private key and the Root-CA public key. Now enter the certificates here in the setup. The CA certificates must not be changed because the Root-CA is automatically available after the first reboot via the file ca-certificates.crt.

  • SSL Client Private Key: Path to the private key of the thin client. Example: /wfs/ca-certs/tc_pk.pem
  • SSL Client Certificate: Path to the client certificate. Example: /wfs/ca-certs/tc_ca.crt
  • CA certs file: Path to the file which contains the CA certificates. Example: /etc/ssl/certs/ca-certificates.crt
  • Disable SSL certification validation

    ☑ SSL validation will be disabled for testing purposes. Normally, the certificates should always be validated.

  • Timeout: Specifies the number of seconds after which the connection is automatically terminated (default: 30).
  • Way2Care (EGP): Name of a group within which the user can log in system-wide with a card without having to authenticate themselves again. Example: EGPGroup

    This function only affects desktop sessions.

  • Default domain: Name of the default domain. The following options are available for specifying the domain:
    • The authentication server returns a domain.
    • A default domain for the Caradigm Appliance is set.
    • A system-wide default domain is entered. You will find it under IGEL Setup > Network > LAN Interfaces > Default Domain field.
    • The user enters the domain manually when logging on.
  • Session type: Selects the session type. To do this, you must have entered the server in the relevant session beforehand.
    Possible values:
    • Citrix HDX/ICA
    • VMware Horizon
    • Microsoft RDP

Depending on the session type, you have the following setting options:

Advanced settings for Citrix HDX/ICA

  • Logoff behavior: The logoff behavior can be specified for Citrix HDX/ICA. The following are possible:
    User selection
    Session termination
    Session logoff

Advanced settings for VMware Horizon

  • Server URL: URL of the VMware Horizon server
  • Desktop name: Name of the desktop that is to be launched automatically.
  • Autoconnect

    ☑ Connect automatically to the desktop if enough information is given.

  • Network Level Authentication
    On: Enables network level authentication (NLA) for RDP connections. Requires local logon window.
    Off: Conventional authentication
  • Company Logo: (Optional) Full path of an image file for a logo which is to appear in the logon window.
  • Logging

    ☑ Local logging is enabled.

    • Logging verbosity: Specifies how exact logging is to be. The level of detail decreases as you move down through the selection.
      Possible values:
      debug
      info
      warning
      error
      critical
  • On-screen keyboard: If this option is enabled, an on-screen keyboard will be shown.
    • X position of the on-screen keyboard: Specifies the X position of the on-screen keyboard (default: -1).
    • Y position of the on-screen keyboard: Specifies the Y position of the on-screen keyboard (default: -1).
    • Width of on-screen keyboard in pixels: It is recommended that you specify either the width or the height (default: 0).
    • Height of on-screen keyboard in pixels: It is recommended that you specify either the width or the height (default: 300).