Block Windows XP using selective Ciphers on Citrix NetScaler

As you probably know Windows XP is no longer being supported by Microsoft. No (security) updates will be made available for Windows XP making it possibly vulnerable for future exploits.

As an organization you will have to decide what you are going to do about these (probably unmanaged) Windows XP workplaces. There will still be a lot of home workers that use Windows XP and see no reason to upgrade since ’’it works fine’’, from an organization perspective these work places could potentially form a threat to the business. Especially when al sorts of direct connections are being made such as SSL/VPN, but let’s not forget the still very popular Citrix client drive mappings.

From a technical stand point of view we can easily block incoming Windows XP connection to our Citrix NetScaler Gateway virtual server or AAA virtual server (or any other SSL publication) using a selective group of Ciphers.

Quoted from Wikipedia: “a cipher (or cypher) is an algorithm for performing encryption or decryption—a series of well-defined steps that can be followed as a procedure”.

Read more of this post