Improve company productivity with a Business Account.Sign Up







NetScaler is the industry’s leading web and application delivery controller that maximizes the performance and availability of all applications and data, and also provide secure remote access to any application from any device type. NetScaler products are easily selected by determining the edition providing functional needs and the appropriate physical or virtual appliance platform to fulfill performance needs.

Share tech news, updates, or what's on your mind.

Sign up to Post


I'm unable to launch Citrix XenDesktop from outside my network. It gives me protocol driver error when launched from store front. Has anyone seen this error message before?

P.S I do not have a netscaler gateway in between. Currently using my firewall for port forwarding.


Good day. I am busy configuring my first netscaler gateway for Xenapp 7 but i am not seeing the VPN tab on the web interface. Any ideas why?
Hi EE,

If I wish to forego Citrix Netscaler , can I then simply create a virtual server load balancing port 443 with SSL offload on my F5 Big IP device using the traffic manager ? I tried searching the F5 and Citrix  knowledge base with no luck. Looking for any persons experienced in this area.
Hello.  Running Citrix Secure Gateway, 3.3.4, Web Interface and XenApp 6.5.  We have 11 different servers running CSG/WI that point to the same XenApp 6.5 farm.

While investigating why we are seeing an increase in client connections drop, I noticed that our CSG logs are only showing that STA's are coming from 1 server instead of the 5 that are defined.  There are actually more in the server farm, so we were just using a subset.  I confirmed through logs and pulled that particular server from the server configuration and at that point, no one could execute apps in Citrix.  I need to remove this single point of failure.

I have confirmed that the webinterface.config reflect all the systems that are in the Web Interface and CSG.  The Citrix XML Service is running on all XenApp systems.  How can I force CSG to use more than a single CTXSTA?

Thanks in advance for your help.

And yes - we are in the process of moving to Netscaler, however; that is not in place quite yet.


I am a Citrix novice, so I will certainly fill in any gaps that I can when trying to frame the situation and additional information needed.

I have a few users who are getting the error message "Unable to connect to the server. Contact your system administrator with the following error SSL Error 4 The operation completed successfully" when attempting to log into their environment.

Some information I have retrieved:

We are running: NetScaler VPX (50) - NS10.1: Build, Date: Oct 18 2013

These are a couple of errors from the logs:

Mon Jan 22 07:09:32 'server_svc_internal_NSSVC_SSL_TCP_192.168.100.6:3008(nsrpcs-' DOWN
Mon Jan 22 07:09:32 'server_svc_internal_NSSVC_SSL_192.168.100.6:443(nshttps-' DOWN
Mon Jan 22 07:11:01 MonServiceBinding_192.168.100.204:80_(tcp-default)(internal): DOWN; Last response: Failure - TCP syn sent, reset received
Mon Jan 22 07:11:02 MonServiceBinding_192.168.100.204:443_(tcp-default)(internal): DOWN; Last response: Failure - TCP syn sent, reset received

This occurs with varying versions of the Citrix Receiver. I was able to replicate the issue with the latest and greatest version.

This is something that just started happening about 18 hours ago.

I am in a position to reboot the Netscaler appliance, but didn't want to do so during a time which we still have a few people working and having someone provide some initial feedback.

Any assistance is greatly appreciated.
We are on Xenapp 7.8.  I just found out that our Netscaler license did not belong to us, but to the company that set up Citrix.  Who is now gone.
I got a temporary Netscaler license.  When The Citrix rep called me to give me pricing, it is $7000.  

I spoke to the guy who set up Netscaler and he told me that the SSL certificate could be pointed to the Store Front, which would eliminate the need for Netscaler.

All we use Xenapp for is "Desktop".  We don't deploy any apps.   Is it OK to not use Netscaler?

When we are trying to connect to citrix we are getting

This site can’t be reached refused to connect.

Checking the connection
Checking the proxy and the firewall

It was working and since this weekend it is not working at all. How do I trace back where the problem is and where do i start?

I am new to this and I cannot figure out the life for me why this virtual is coming up as unregistered. I followed our KB - reinstalled VDA 7.6 rebooted and still nothing. Any experts in this area?
Are there major features missing for load balancing purposes? Throughput limits? High cost?
Running ldp.exe on domain controller using domain admin credentials and simple bind, I got the same error the first run. Now it gives me The token supplied to the function is invalid.

Running ldp.exe on a different domain controller on different domain/forest, the results are valid.

So something wrong on first domain controller. How/Where to find the problem?

Anyone could share the Basic Tutorial link\URL to learn NetScaler and its configuration/features.

Any help would be appreciated.

We are are looking into replacing our ADFS Proxy Servers with Citrix Netscaler (See link ->

We are also looking at buying Duo and using it for ADFS (Link->

We don't to make our network engineer go through all of the work switching ADFS proxy over to the Netscaler if will not work with Duo. Wanted to check to see if anyone here has or is doing this?

I have a load balancer with a public VIP. The partner can only get the site if they ignore that they perceive the site as unsafe.
I’m fairly the certain my very is valid because other VIPs use it. What are some reasons a client might not trust the cert? Brain storming question.
How do I get user report logs from XenDesktop 7.x? There doesn't appear to be a reporting tools in Studio or Director. Would this be available from the Netscaler? Please advise. Thanks
We have purchased a company (Microsoft Exchange 2010) and will be migrating them to our Microsoft Exchange 2013 environment. In that process, we will need to migrate their SMTP sending devices to our exchange environment. This process is:

- entering the devices' IP into our Exchange 2013 reinjection list
- updating that device with the new SMTP server address of our exchange server

Issue: previous exchange environment operated with an injection list of all IPs: so they did not maintain a list. They also operate with a Citrix Netscaler load balancing device which is what they advertise to their devices as the SMTP address.

Question is: how can we effectively find the devices in this Exchange 2010 environment that are using the exchange server to send email with. For example, scan to email printer.

Suggestions please?

I have a OID as below

Open in new window

I would like to know how can I convert it to it's name using python? I do not want to make any network or localhost call.

this OID is mapped to one of the VSERVER's Name in NetScaler.
Hi all,

After having a pen test we have report outlining a number of insecure ciphers that have been highlighted with our Netscaler 7500 appliances. I looking in Traffic managment / SSL/Cipher groups I can see there are 104 polices in here.

Are all these polices in use if they are in the list?
Hi all,

We are currently running a pair of Netscaler in HA mode running build 47.14.

I have found some guides on how to upgrade the them, i would like to know are we OK to jump to current build 53.11 as there have been several releases since we last updated our systems.

Version NS11.1


We are in the implementation phase of the netscaler vpn solution and we have found the session establishes successfully. During the session internal DNS is able to resolve to the internal DNS server however not within the defined scope is unable to resolve. For example  O365 which is an external resource.

We do not  have split tunneling disabled and need this function disabled. We do have internal DNS servers and has ns servers in the netscaler network configuration .

Any ideas are appreciated
Hi Experts,

We have 2 sites with Separate SoreFronts configured. They are in separate locations and there is site to site VPN set up between them.
We have NetScaller set up in one of locations which is Gateway for both sites. When people connecting to netscaller and trying to access citrix which is other location than NetScaller, connection is slow but when they are accessing citrix in the same location as NetScaller connection is fine. I'm assuming that slowness is caused by all traffic routed through Netscaller and then Netscaller routing traffic through VPN link between 2 sites. Is it possible then to set up NetScaller so If user is trying to access citrix which is not on site with Netscaller, he will be still authenticated by Netscaller but then all traffic will be redirected directly to that citrix, instead going through Netscaller? Hope it makes sense😊

Kind Regards,

I've done this a few years back but can't remember the procedure. The cert request has been added to the server via iis

Why do we use this for Citrix Web Servers. It maybe on Web Interface, StoreFront
Can someone let me know
I need some guidance on Xenapp7.12 server installation.

I installed 2 servers one with storefront and one with other features (Delivery Controller, Licensing, etc)

Now I am stuck with configuartion.

Appreciate your help.
If you have a pair of Citrix Netscalers - is there a way to set a management IP address that stays with the active member of the HA pair?
What I want is for users on the laptops to "Not get the error message below"  when they login to Citrix through Netscaler.
Please see details below

Error message
Citrix Receiver

Unable to launch your application. Contact your help desk with the following
Cannot connect to the Citrix XenApp server.Network issues are preventing your
connection. Please try again. If the presists, please call your help desk.

I have laptops that are not joined to the domain.  This is the laptop environment, and this what happens.
1. Windows 7 Ultimate on two laptops and Windows 7 professional  on four laptops
2. Internet Explorer 11
3.Latest OS service packs for Windows 7 ultimate and professional
4. Citrix receiver 3.4 on three laptops and 4.6 on three laptops .
5. Access to Citrix is being done by using
6. The laptops users are connecting to the internet using a Wireless Verizon jetpack, there own home wireless, or Verizon MiFi card.
    Then Login to Citrix from
7. After the users Login to Citrix they get the error message above. - If the users randomly try again they " sometimes " can login.
    But not without getting the error above.
8. I can add the Citrix link for Netscaler to Internet Explorer 11 compatibility view, and Trusted Sites .
    However when you exist I.E 11 and go back in the trusted site I added disappears.
9. XenApp6.5 version






NetScaler is the industry’s leading web and application delivery controller that maximizes the performance and availability of all applications and data, and also provide secure remote access to any application from any device type. NetScaler products are easily selected by determining the edition providing functional needs and the appropriate physical or virtual appliance platform to fulfill performance needs.