SSL expired, Caqn we turn off security for a short time

We have Citrix Meta frame and our SSL Expired. We renewed, but it will be several hours before the SSL is active again. Users are getting an error "cannot connect to the Citrix XenApp Server, ssl error 70, the server sent an expired security certificate"

Can we turn off in Citrix the requirement that the gateway only send secure traffic so users can get in until our ssl is updates later today?
actConsultantAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Carl WebsterCitrix Technology Professional - FellowCommented:
One option, give the Web Interface server a FQDN and use that FQDN.

Just tested it in my lab.  I was able to completely bypass the SSL stuff by going to http://citrix2.domain.com/Citrix/AenApp.  I got the login screen and was able to successfully login.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Carl WebsterCitrix Technology Professional - FellowCommented:
Sorry, that should have been XenApp not AenApp.
0
actConsultantAuthor Commented:
Do I need to configure anything on the Citrix server?  IF so where?
0
Carl WebsterCitrix Technology Professional - FellowCommented:
I made NO changes to any of my servers.
0
hodgeyohnCommented:
if you are expecting users to access the system over the internet you can.

1.  assign an live internet ip address to your citrix the command is altaddr
2.  setup your web interface to use alternate addressing instead of the csg direct
3.  allow web traffic to your web interface server and ica traffic (tcp 1494) to your citrix server.

this isnt as secure, but ica traffic if fairly secure just based on its nature.
 
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Citrix

From novice to tech pro — start learning today.