Quick Support

An einem Meeting teilnehmen:

Mauricio Schäpers

Michael Marx

An einer Fernwartung teilnehmen:

VS Qloud Support

Für den Betritt der Fernunterstützung wird ein Passwort von Agenten festgelegt.
Dieses wird Ihnen telefonisch oder per Email bekannt gegeben.

Kunden Login

Partner Login

XenMobile: SAML SSO fails for Secure Browse MDX Apps

I had a call with a customer who complained that SAML SSO does not work for ShareFile MDX as soon as the MDX Policy Network Access is set to “Tunnel to the internal network” using Secure Browse.

Secure Browse is required as soon as there are ShareFile Connectors (CIFS or SP) and you want to provide your employees a single sign-on to them.

Checking the logs of the ShareFile MDX App, we found the following error:

We were not able to figure out what exactly caused the issue, but it seemed that NetScaler is corrupting the traffic for some reason.

This was confirmed by a forum post at citrix discussions


As a workaround, we enabled SplitVPN so that the login to ShareFile using SAML is working and SSO to the SZC Connectors is working.

In the meanwile a support case was opened.



According to Citrix, newer Versions of the NetScaler nows recognise the Bearer header and removes it as it caused issues when new MS Clients talk to legacy SharePoint Servers.

Too bad for ShareFile, isn’t it?

Create the following traffic policy and actions to your NetScaler Gateway configuration and your issues are gone! 🙂

Schreibe einen Kommentar

Deine E-Mail-Adresse wird nicht veröffentlicht. Erforderliche Felder sind mit * markiert.