Contents
End of Support Information
The iframe-based traditional Duo Prompt in Citrix Access Gateway RADIUS configurations reached its end of support on March 30, 2024. Citrix Access Gateway customers must migrate to a RADIUS configuration without the iframe, such as RADIUS with Automatic Push, for continued support.
As Citrix Access Gateway is itself an end-of-life product, we recommend migrating to NetScaler, which can be configured with Duo Single Sign-On for NetScaler. Duo Single Sign-On, our cloud-hosted identity provider, features Duo Central and the Duo Universal Prompt.
Learn more about the iframe prompt end of life in the Universal Prompt update guide, and review the Duo End of Sale, Last Date of Support, and End of Life Policy.
The instructions for this solution were removed on April 2, 2025. Customers who had this configuration deployed before then and need to refer to the original instructions may contact Duo Support.
Citrix Access Gateway is an end-of-life product. See the Citrix Legacy Product Matrix for additional information. Consider updating to NetScaler.
Troubleshooting
Need some help? Review troubleshooting tips for the Authentication Proxy and try the connectivity tool included with Duo Authentication Proxy 2.9.0 and later to discover and troubleshoot general connectivity issues.
Also take a look at our Citrix Knowledge Base articles or Community discussions. For further assistance, contact Support.