Citrix Secure Gateway kicks certificate back as unusable during configuration

Posted on 2008-06-25
Last Modified: 2008-12-31
Setting up Secure Gateway to allow remote access for a customer.  Installed Secure Gateway and going through the configuration, I get to where it asks you to pick the certificate to use.  

I created a self-signed certificate, just to test with, and it returned that the certificate was "unusable."  I figured it must have to do with the fact that it is self-signed, so I went to a certificate company online.  They have a 21 day free trial for certs and I was told from another admin that their test certs work fine with the Gateway, so it would give me the opportunity to make sure I got everything right before I spend the money on the certificate.  

I got the test certificate, installed that company's certs in root (it was listed as a necessary step for the test cert to work) and then installed the test cert.  Running the Gateway configuration again, it shows up just fine in the list of options, I choose it, and again, I end up with "the server certificate specified is unusable."  

Not sure what I am missing here, any ideas?
Question by:Telstar-Networks
  • 3
  • 2
LVL 36

Expert Comment

by:Carl Webster
ID: 21866915
LVL 36

Expert Comment

by:Carl Webster
ID: 21866929

Author Comment

ID: 21866944
Sorry, forgot to mention I have already tried that.  Also, in that instance, it configured fine the first time, but changes later were giving this error.  I am unable to get it to work the first time at all.

Author Comment

ID: 21867029
Going to the test cert and looking at it, there only lists a Public key when you look at the Version 1 fields.  Does this need to have a private key as well?  If so, how do I change that...

Accepted Solution

Telstar-Networks earned 0 total points
ID: 21867378
Figured it out, in case anyone else runs into this problem.  The issue was that something happened with the cert being assigned to the default website in iis, getting it stuck pending.  Had to go to props on the site, then to view the server cert and it notified me it was stuck in pending.  There was an option to delete the pending and then it allows you to reassign the certificate.  After that is done, it works fine.

Featured Post

How to improve team productivity

Quip adds documents, spreadsheets, and tasklists to your Slack experience
- Elevate ideas to Quip docs
- Share Quip docs in Slack
- Get notified of changes to your docs
- Available on iOS/Android/Desktop/Web
- Online/Offline

Join & Write a Comment

Suggested Solutions

Citrix XenDesktop 7.6 Citrix Policies Audio
ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
How to install and configure Citrix XenApp 6.5 - Part 1. In this video tutorial we have explained step by step installation of Citrix XenApp 6.5 Server on Windows Server 2008 R2 is explained in this video. We have explained the difference between…
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.

759 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

21 Experts available now in Live!

Get 1:1 Help Now