• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 3931
  • Last Modified:

Citrix Secure Gateway kicks certificate back as unusable during configuration

Setting up Secure Gateway to allow remote access for a customer.  Installed Secure Gateway and going through the configuration, I get to where it asks you to pick the certificate to use.  

I created a self-signed certificate, just to test with, and it returned that the certificate was "unusable."  I figured it must have to do with the fact that it is self-signed, so I went to a certificate company online.  They have a 21 day free trial for certs and I was told from another admin that their test certs work fine with the Gateway, so it would give me the opportunity to make sure I got everything right before I spend the money on the certificate.  

I got the test certificate, installed that company's certs in root (it was listed as a necessary step for the test cert to work) and then installed the test cert.  Running the Gateway configuration again, it shows up just fine in the list of options, I choose it, and again, I end up with "the server certificate specified is unusable."  

Not sure what I am missing here, any ideas?
0
Telstar-Networks
Asked:
Telstar-Networks
  • 3
  • 2
1 Solution
 
Carl WebsterCommented:
0
 
Telstar-NetworksAuthor Commented:
Sorry, forgot to mention I have already tried that.  Also, in that instance, it configured fine the first time, but changes later were giving this error.  I am unable to get it to work the first time at all.
0
 
Telstar-NetworksAuthor Commented:
Going to the test cert and looking at it, there only lists a Public key when you look at the Version 1 fields.  Does this need to have a private key as well?  If so, how do I change that...
0
 
Telstar-NetworksAuthor Commented:
Figured it out, in case anyone else runs into this problem.  The issue was that something happened with the cert being assigned to the default website in iis, getting it stuck pending.  Had to go to props on the site, then to view the server cert and it notified me it was stuck in pending.  There was an option to delete the pending and then it allows you to reassign the certificate.  After that is done, it works fine.
0

Featured Post

Free Tool: Path Explorer

An intuitive utility to help find the CSS path to UI elements on a webpage. These paths are used frequently in a variety of front-end development and QA automation tasks.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

  • 3
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now