Citrix Secure Gateway kicks certificate back as unusable during configuration

Posted on 2008-06-25
Last Modified: 2008-12-31
Setting up Secure Gateway to allow remote access for a customer.  Installed Secure Gateway and going through the configuration, I get to where it asks you to pick the certificate to use.  

I created a self-signed certificate, just to test with, and it returned that the certificate was "unusable."  I figured it must have to do with the fact that it is self-signed, so I went to a certificate company online.  They have a 21 day free trial for certs and I was told from another admin that their test certs work fine with the Gateway, so it would give me the opportunity to make sure I got everything right before I spend the money on the certificate.  

I got the test certificate, installed that company's certs in root (it was listed as a necessary step for the test cert to work) and then installed the test cert.  Running the Gateway configuration again, it shows up just fine in the list of options, I choose it, and again, I end up with "the server certificate specified is unusable."  

Not sure what I am missing here, any ideas?
Question by:Telstar-Networks
  • 3
  • 2
LVL 36

Expert Comment

by:Carl Webster
ID: 21866915
LVL 36

Expert Comment

by:Carl Webster
ID: 21866929

Author Comment

ID: 21866944
Sorry, forgot to mention I have already tried that.  Also, in that instance, it configured fine the first time, but changes later were giving this error.  I am unable to get it to work the first time at all.

Author Comment

ID: 21867029
Going to the test cert and looking at it, there only lists a Public key when you look at the Version 1 fields.  Does this need to have a private key as well?  If so, how do I change that...

Accepted Solution

Telstar-Networks earned 0 total points
ID: 21867378
Figured it out, in case anyone else runs into this problem.  The issue was that something happened with the cert being assigned to the default website in iis, getting it stuck pending.  Had to go to props on the site, then to view the server cert and it notified me it was stuck in pending.  There was an option to delete the pending and then it allows you to reassign the certificate.  After that is done, it works fine.

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Difference between Sccm and Citrix Xenapp 7 246
Citrix Xenapp 7.8 hangs up 27 55
ICA contains local IP Address 2 25
Add Windows 2012 RDS CALs. 4 18
#Citrix #Citrix Netscaler #HTTP Compression #Load Balance
Exchange server is not supported in any cloud-hosted platform (other than Azure with Azure Premium Storage).
How to install and configure Citrix XenApp 6.5 - Part 1. In this video tutorial we have explained step by step installation of Citrix XenApp 6.5 Server on Windows Server 2008 R2 is explained in this video. We have explained the difference between…
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.

912 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now