Bulls-Eye
asked on
ssl error 61 accessing citrix
I had a consultant come in and help me install a a RapidSSL CA certificate on my citrix farm. This allows us to now support the iPad and iPhone and the iPhone does work. However, I got a new feature that all the other desktops that login to the farm receive a SSL61 error.
it seems if I web into the site then click on the padlock and say import it starts to work for IE. Sometimes if I just go to the site enough it seems to work. However, mozilla firefox does not work and error on a trusted site.
It just like every pc that has IE gets this error. Is this a problem with the cert or the web interface of Citrix?
any ideas?
it seems if I web into the site then click on the padlock and say import it starts to work for IE. Sometimes if I just go to the site enough it seems to work. However, mozilla firefox does not work and error on a trusted site.
It just like every pc that has IE gets this error. Is this a problem with the cert or the web interface of Citrix?
any ideas?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
my FQDN on the citrix secure gateway matches that of the certificate. However this server is behind a firewall and has a 192.168.x.x address. The actual cert is an public ip address and is listed on my hosting providers DNS and points to my firewall where I have a NAT policy that point back to a server. I do have an altaddr address on the server that shows it's public IP address.
I can define an additional host in my local DNS server for this server, I just don't know if I put the public or private name in the table.
I can define an additional host in my local DNS server for this server, I just don't know if I put the public or private name in the table.
IP addresses are not recorded for SSL certificates, only FQDNs. If you are using CSG, you should NOT be using AltAddr also.
ASKER
Fred