Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 3410
  • Last Modified:

ERROR: An error has occurred while trying to enumerate your applications. When trying to use SSL

OK..another easy one for the Citrix experts - I know very little about Citrix so please be specific.

I am testing PM 4.0 everything is installed on one server - including IIS.

I have my web interface applications working.  I now want to use SSL to secure the transmission.

My Citrix server is inside my network that is protected by a PIX.

I have installed a certificate from an internal CA.  I have installed the certificate on the IIS web server.

I can run my apps if I use the https://xxx.xxx.xxx.xx address.  However, if I force using SSL on the default web page (in the IIS manager) I can login to the server but I get "You are logged out from MetaFrame Presentation Server. Follow the link provided to log back in." and "ERROR: An error has occurred while trying to enumerate your applications."

IDEAS?  Let me know what additional information you need.  Thanks!
0
e_vanheel
Asked:
e_vanheel
  • 7
  • 3
  • 2
  • +1
3 Solutions
 
BLipmanCommented:
Well, I am no expert with IIS but I would suggest (in general) that you use Citrix Secure Gateway instead of just SSL'ing your IIS site.  You will be more secure with the gateway and it is free!
0
 
shniz123Commented:
I use Citrix Gateway, if you decide to go that route.
0
 
e_vanheelAuthor Commented:
Can you run the CSG if everything is on the same server?  How are the communications secure between the client (over the Internet) and the server on the inside of my network?
0
Concerto Cloud for Software Providers & ISVs

Can Concerto Cloud Services help you focus on evolving your application offerings, while delivering the best cloud experience to your customers? From DevOps to revenue models and customer support, the answer is yes!

Learn how Concerto can help you.

 
BLipmanCommented:
You can run CSG along with Web Interface and Presentation Server, you just need to swap some ports around.
0
 
e_vanheelAuthor Commented:
Sorry I have been away from this question for a few days.   Please answer my question above about how the communications are secure between the client and the server.

also any additional information about CSG - basic setup, got ya's to look out for, etc.
0
 
mgcITCommented:
The CSG intercepts all traffic going to your web interface and citrix servers.  This way there is no direct connection between the outside world and your PS 4.0 servers.  All data is ecrypted with 128-bit SSL.

Of course the proper way to configure this would be to have a separate server running CSG + WI.  Having the WI and CSG on the same server as your PS 4.0 doesn't really make sense.

All of the details you need on installing are here: http://support.citrix.com/article/CTX106300

And of course post questions in the forum if you have more specific questions.
0
 
e_vanheelAuthor Commented:
I am only evaluating Citrix so I don't have all of the required hardware.  I only have the one server internal to my network.  If we deploy Citrix, I will purchase all recommended hardware to deploy this correctly!

What do you recommend in this situation - SSL or still run the CSG on the one box (running PM4, IIS, on the inside of the network)?

I need to secure this connection - I will be putting sensitive information across the link for the test.

Thanks again.
0
 
mgcITCommented:
Have one server with CSG & Web Inteface (IIS) installed.  This will go in your DMZ.  Everything else will be behind the firewall.  This is called a Single-hop deployment and is discussed on page 56 of the Admin guide posted above

If you want even more protection go with a Double-hop deployment which is discussed starting on page 58.  See pages 61 and 63 for a diagram of both scenarios.
0
 
mgcITCommented:
to answer your question regarding your current situation... I don't really recommend either option.  However putting the CSG on the same server as everything else makes NO sense at all, so I would have to say using SSL with IIS would be the lesser of 2 evils.
0
 
e_vanheelAuthor Commented:
Thanks mgcIT,

I am now reading the guide.  What is the recommendation for my current situation.  I only have 1 box. - Can it be done securely?
0
 
e_vanheelAuthor Commented:
OK, so it looks like for my unique temporary situation I should us SSL.

As stated above: I can run my apps if I use the https://xxx.xxx.xxx.xx address.  However, if I force using SSL on the default web page (in the IIS manager) I can login to the server but I get "You are logged out from MetaFrame Presentation Server. Follow the link provided to log back in." and "ERROR: An error has occurred while trying to enumerate your applications."

Ideas?

Again, sorry for being such a Citrix noob.
0
 
e_vanheelAuthor Commented:
Bump -  I only have 1 box. - Can it be done securely?
0
 
e_vanheelAuthor Commented:
last bump.

How can do this using just SSL?
0

Featured Post

Concerto's Cloud Advisory Services

Want to avoid the missteps to gaining all the benefits of the cloud? Learn more about the different assessment options from our Cloud Advisory team.

  • 7
  • 3
  • 2
  • +1
Tackle projects and never again get stuck behind a technical roadblock.
Join Now