Learn how to a build a cloud-first strategyRegister Now


SSL expired, Caqn we turn off security for a short time

Posted on 2008-11-06
Medium Priority
Last Modified: 2012-06-22
We have Citrix Meta frame and our SSL Expired. We renewed, but it will be several hours before the SSL is active again. Users are getting an error "cannot connect to the Citrix XenApp Server, ssl error 70, the server sent an expired security certificate"

Can we turn off in Citrix the requirement that the gateway only send secure traffic so users can get in until our ssl is updates later today?
Question by:actConsultant
  • 3
LVL 37

Accepted Solution

Carl Webster earned 1200 total points
ID: 22898641
One option, give the Web Interface server a FQDN and use that FQDN.

Just tested it in my lab.  I was able to completely bypass the SSL stuff by going to http://citrix2.domain.com/Citrix/AenApp.  I got the login screen and was able to successfully login.
LVL 37

Expert Comment

by:Carl Webster
ID: 22898648
Sorry, that should have been XenApp not AenApp.

Author Comment

ID: 22898698
Do I need to configure anything on the Citrix server?  IF so where?
LVL 37

Expert Comment

by:Carl Webster
ID: 22898709
I made NO changes to any of my servers.

Assisted Solution

hodgeyohn earned 800 total points
ID: 22898757
if you are expecting users to access the system over the internet you can.

1.  assign an live internet ip address to your citrix the command is altaddr
2.  setup your web interface to use alternate addressing instead of the csg direct
3.  allow web traffic to your web interface server and ica traffic (tcp 1494) to your citrix server.

this isnt as secure, but ica traffic if fairly secure just based on its nature.

Featured Post

Concerto Cloud for Software Providers & ISVs

Can Concerto Cloud Services help you focus on evolving your application offerings, while delivering the best cloud experience to your customers? From DevOps to revenue models and customer support, the answer is yes!

Learn how Concerto can help you.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Securing your business data in current era should be your biggest priority. Numerous people are unaware of the fact that insiders commit more than 60 percent of security breaches. You need to figure out the underlying cause and invoke your potential…
It’s a season to be thankful, and we’re thankful for users like you who engage on site, solve technology problems, and network with others in the industry. What tech are we most thankful for? Keep reading.
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…
We’ve all felt that sense of false security before—locking down external access to a database or component and feeling like we’ve done all we need to do to secure company data. But that feeling is fleeting. Attacks these days can happen in many w…

810 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question