I am try to help our new Citrix admin troubleshoot why some of our Mac clients are getting an SSL-86 message when trying to launch an app.
Here is what I have done and researched.
1) Copy the root Verisgin, Intermediary Symantec and our SSL cert to the /library/Application Support/Citrix/Keystore/cacert folder
2) Imported all cert into the Mac KeyAccess and imported to certs into login and System and set the trust policy to "Always allow"
3) When the user access our Citrix site they *do not* get a Cert error message
We are using Citrix Netscaler 10.1 and just cutover to Storefront.
I have been working on this for two days without any luck. I believe Safarie is not accepting the intermediary certificate...
Please note, if a user uses Internet Explorer from a Windows machine it seems to work without issue.