citrix009
asked on
secure ticket authority not found
I am setting up a secure Gateway when I reach the step to enter FQDN it does not find the STA ID automatically and generates an error that secure ticket authority not found. So I went to the ctxsta.config file and manually entered the id to complete the installation. When I checked the https:// created in access management console it does not work. If I change the DMZ setting to Gateway Direct the actual citrix site where I have published the application no longer works. All the port settings are correct.
I ran secure Gateway diagnostics and authority server is not found.
I ran secure Gateway diagnostics and authority server is not found.
When configuring the STA, you should see an option for the TCP port. This port should reflect the XML port you specified on your Citrix farm.
ASKER
TCP and XML ports both are set to 80. Any other suggestions?
im assuming you have the SG setup in the DMZ. is port 80 open from the DMZ to the citrix server?
ASKER
The port as open as another server in a different path also using 80.
1494, 2598 open as well?
ASKER
Yes they are open.
ASKER
Its only happening to this server the other server is working fine.
Ok, just so I have this straight...
you have a multiple server citrix farm sitting in your LAN. You have a SG sitting in your DMZ. You are trying to provide multiple/redundant STA's. Your other citrix servers are picked up just fine in the SG. You have one server that the SG is unable to connect to. Is this correct?
you have a multiple server citrix farm sitting in your LAN. You have a SG sitting in your DMZ. You are trying to provide multiple/redundant STA's. Your other citrix servers are picked up just fine in the SG. You have one server that the SG is unable to connect to. Is this correct?
ASKER
That is correct. The other server has presentation is using 4.0 and is working just fine. I created a new farm to test PS4.5 and setting up SG on that server and it is not picking up the information right. When I run the sg disgnostics everything is fine except STA server authority.
ASKER
Here is the disgnostics report..
Version = 3.0.1
Computer NetBIOS Name: CITRIX2
Configuration captured on: 7/9/2008 1:09:03 PM
--------------------------
Secure Gateway Global Settings
--------------------------
Version = 3.0.1
Product secured = MetaFrame Presentation Server only
Logging level = 2 (Warning, errors and fatal events)
Client connection timeout = 100 seconds
Maximum concurrent connections = 90
Certificate FQDN = citrix2.globe.ctx
Interfaces
----------
All interfaces (0.0.0.0 : 443)
--------------------------
Protocol = SSL, TLS
Cipher suites = ALL
Secured = Yes
HTTP = No
ICA = Yes
SOCKS = Yes
Gateway Client = No
LoadBalancerIPs = None defined
Web Interface
-------------
FQDN = localhost
Port = 80
Secured = No
Protocol = SSL, TLS
Cipher suites = ALL
Access mode = Indirect
Tested OK
Authority Servers
-----------------
ID = STA36284B8230F3
--------------------
FQDN = citrix2.globe.ctx
Port = 80
Path = /scripts/ctxsta.dll
Type = STA
Secured = No
Protocol = SSL, TLS
Cipher suites = ALL
Certificate Check
-----------------
FQDN = citrix2.globe.ctx
This certificate is currently valid.
EOF
Version = 3.0.1
Computer NetBIOS Name: CITRIX2
Configuration captured on: 7/9/2008 1:09:03 PM
--------------------------
Secure Gateway Global Settings
--------------------------
Version = 3.0.1
Product secured = MetaFrame Presentation Server only
Logging level = 2 (Warning, errors and fatal events)
Client connection timeout = 100 seconds
Maximum concurrent connections = 90
Certificate FQDN = citrix2.globe.ctx
Interfaces
----------
All interfaces (0.0.0.0 : 443)
--------------------------
Protocol = SSL, TLS
Cipher suites = ALL
Secured = Yes
HTTP = No
ICA = Yes
SOCKS = Yes
Gateway Client = No
LoadBalancerIPs = None defined
Web Interface
-------------
FQDN = localhost
Port = 80
Secured = No
Protocol = SSL, TLS
Cipher suites = ALL
Access mode = Indirect
Tested OK
Authority Servers
-----------------
ID = STA36284B8230F3
--------------------
FQDN = citrix2.globe.ctx
Port = 80
Path = /scripts/ctxsta.dll
Type = STA
Secured = No
Protocol = SSL, TLS
Cipher suites = ALL
Certificate Check
-----------------
FQDN = citrix2.globe.ctx
This certificate is currently valid.
EOF
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks for the replay. The disgnostics ran ok but I am still unable to successfully open the page
https://citrix2.globe.ctx:444/citrix/accessplatform
https://citrix2.globe.ctx:444/citrix/accessplatform
ASKER
The expert directed me to fix the real problem.