Citrix released a new Citrix VPN Cliënt for Netscaler on Apple IOS devices. When there is a session policy configured with an Plug-in Type: Windows/MAC OS X the customer can still connect with VPN access, even without any VPN configuration.
You could fix this by using an Responder policy to block access for VPN access.
In this blog I will desribe how to do this
Block Citrix VPN Client for Apple IOS
After selecting VPN you will get an prompt to login
To get it fixed
Click onder Policies under Responder
Click on Add
Name: KillIOSVPN (or something else)
Click on Create
Click on Policy Manager
Bind Point: Override Global
Click on Continue
Click on Bind
Select KillIOSVPN (or the created name in the step above)
Click on OK
Click on Done
After these steps the user won’t get any login prompt again and the user was no access with the VPN client.