We help IT Professionals succeed at work.

We've partnered with Certified Experts, Carl Webster and Richard Faulkner, to bring you two Citrix podcasts. Learn about 2020 trends and get answers to your biggest Citrix questions!Listen Now


Presentation Server 4.0 not authenticating users with domain when using ssl

Rick asked
Medium Priority
Last Modified: 2007-01-04
anyone please....We have got a win2003 server with 2 network cards, one in the DMZ and one in the office network. When configured without ssl, user authentication works fine in citrix, BUT when we activate SSL, it says the user credentials are wrong and could not be verified.
When we deactivate SSL, PRESTO! it starts working again.
Is it looking for the AD in the DMZ or something? Any help would be highly appreciated.
Watch Question

An unrelated question, why are you bridging your LAN and DMZ instead of using firewall tunnels/port fwd'ing?  Aren't you defeating the purpose of a DMZ and complicating your setup?  Secondly, are you using Citrix Secure Gateway?  This is a free add-on and is the intended method of SSL'ing your Web Interface.  


Hi BLipman, yes what you say is true ofcourse. We are in the process of testing Citrix and have put this on a virtual machine on an esx server and we will be doing things right for the real deployment. We just wanted a quick test. It looks like we made it more complicated than necessary by doing it this way as you have stated.I will try the secure gateway tomorrow. I will post the results of this and would really appreciate it if you could give me some pointers if we still experience problems after that, if you don't mind. Thanks in advance.
Cool, I will keep an eye on this.  CSG is pretty simple; there isn't too much to it.  In your web interface you need to have your DMZ Settings configured to use it.  Most situations would use "Secure Gateway Direct".  This was counter to what I would have guessed but you need to think of CSG as a proxy; it is the 'client' and needs the PS4 server's direct addres.  If you have NAT behind the CSG then the setting would be "Secure Gateway Alternate".  Make sure you can connect right from the server then work outwards.  Let us all know if you get stuck!

Not the solution you were looking for? Getting a personalized solution is easy.

Ask the Experts


Sorry for the late reaction. Due time problems we can't test the Citrix PS any futher. Therefore it isn't posible to react on above comments. So this question can be closed.
Access more of Experts Exchange with a free account
Thanks for using Experts Exchange.

Create a free account to continue.

Limited access with a free account allows you to:

  • View three pieces of content (articles, solutions, posts, and videos)
  • Ask the experts questions (counted toward content limit)
  • Customize your dashboard and profile

*This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.


Please enter a first name

Please enter a last name

8+ characters (letters, numbers, and a symbol)

By clicking, you agree to the Terms of Use and Privacy Policy.