Jump to content
Welcome to our new Citrix community!
  • 0

Client Certificate auth with Receiver/Workspace for HTML5


Adam Gurney1709161434

Question

Hello,
 

Our lab setup is as follows:

ADC VPX 12.1

StoreFront 1909.1.011

Citrix Virtual Apps 7 1909.1

 

External access through the netscaler into the storefront store, with the site setup to 'Always use Receiver for HTML5'.

This Works across the board - PC/Mac browsers and more importantly Mobile (iOS)

As soon as we set Client Authentication in the Gateway server - in SSL paramaters. CA cert is defined, and Client Cert check Mandatory) it stops working on iOS Safari and Safari on MacOS, but continues to work everywhere else (once the client cert check has been completed)

The client certificate has been installed on the iOS device and prompts when accessing the gateway site first time

 

The error is:

 

"Citrix Workspace app cannot connect to the server. Please refer to the Citrix Knowledge Center article on configuring local access for HTML5"

The Log file contains the following:

 

image.thumb.png.169d159437d2f6da52f0d75ed1bf3a8d.pngSESSION:|:ICA:|:WRAPPER:|:INFO : session size in icastack {"width":1072,"height":662,"EWpwA":1573207998120}

INIT :|: CONNECTION :|: TRANSPORT DRIVER :|: TRYING FOR SOCKET CONNECTION ON testlab.myfqdn.com : 444

INIT :|: CONNECTION :|: WEB SOCKET :|: INFO :|: websocket-url=wss://testlab.myfqdn.com:444

INIT :|: CONNECTION :|: WEB SOCKET :|: INFO :|: Current Protocol Index is : 0

INIT :|: CONNECTION :|: TRANSPORT DRIVER :|: CHANNEL SOCKSV5

SESSION:|:SESSION MANAGER:|:NONSEAMLESS:|:ica connection with new connection

SESSION:|:SESSION MANAGER:|:END:|:command =0

SESSION:|:CONNECTION:|:LOADTIME:|:ica initialize =34

INIT :|: CONNECTION :|: WEB SOCKET :|: INFO :|: websocket-url=wss://testlab.myfqdn.com:444

INIT :|: CONNECTION :|: WEB SOCKET :|: INFO :|: Current Protocol Index is : 1

INIT :|: CONNECTION :|: WEB SOCKET :|: INFO :|: websocket-url=wss://testlab.myfqdn.com:444

INIT :|: CONNECTION :|: WEB SOCKET :|: INFO :|: Current Protocol Index is : 2

SESSION:|:ICA:|:TRANSPORT:|:DRIVER:|:close with code=1006

ERROR:|:error =error-server,error-local-access

 

Has anyone else tested this scenario or any ideas what it could be?

Many thanks

 

Edited by agurney561
Link to comment

0 answers to this question

Recommended Posts

There have been no answers to this question yet

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...