Call back URL is the internally accessible URL of the appliance. This is used to verify that requests received from NetScaler Gateway originate from that appliance.
Note: Callback URL is only needed if SmartAccess CVAD policies or password-less authentication methods (Smart Cards, SAML, and so on) are used. Or you should leave it as blank.
Ensure that call back URL is configured accurately as defined in the preceding points:
- The callback URL must resolve to any NetScaler Gateway VIP on the same appliance that authenticated the user.
- The callback URL must have a trusted and valid (not expired) certificate.
- The callback URL must be same as the FQDN to which the certificate is issued.
- The callback URL must not have client certificates set to Mandatory.