ShareFile SSO multiple (three) Citrix App Controllers SAML configuration

Recently I came across this scenario:

AD domain - Single
ShareFile Sub domain - Single
Citrix MDM Enrollment - 3 URLS (3 deployments for 3 regions)
Citrix App Controllers -3

I have configured region1 Citrix App Controller as SAML provider for Sharefile. In browser, Sharefile SAML login is working fine for all three regions. MDX Sharefile apps from region1 app controller are working fine but MDX Sharefile apps from other regions App controllers' were failing SSO.

Workaround I used:

I have installed wild card cert as SAML cert on all regions' Citrix App controllers. Configured remaining two app controllers (App & Docs--->Docs--->Sharefile) to reflect the Sharefile domain information. After that I sync up the Sharefile configuration (under docs-Sharefile) on region1 App controller. It is working now Sharefile SSO for MDX apps for all regions.

Importing wild card cert as SAML cert:
First I uploaded the wildcard cert(in .pfx) to the app controller as server certificate. I removed the chain links and exported the cert in .pem format from App Controller. I reimported the pem wild card certificate(no chains) to the app controller as SAML cert on all three regions' App Controllers.

Configuring First Citrix App Controller as SAML provider
FYI..As given below I configured the Sharefile SSO on region1 App Controller :
http://ravichallas.blogspot.com/2015/01/mdx-sharefile-app-sso.html


Have a nice day.