Jump to content
Welcome to our new Citrix community!
  • 0

Force ICA to run over SSL on a specific domain name

Henri Devigne


Hello Everyone,


We are face to a special problem, our customer is located in a secure network which only allow communication on 443 ( https ) port.


The customer's citrix workspace should be able to connect to our citrix via his public domain name. 


Then, we follow this citrix article: https://www.citrix.com/blogs/2014/12/11/how-to-secure-ica-connections-in-xenapp-and-xendesktop-7-6-using-ssl/


Now, ICA is correctly listening on his domain name throught SSL


Our problem, is the domain name used to generate connexion file use the active directory dns name of the citrix server, then; "citrix.mynetwork.lan" which is not known from DNS resolver ;) 



Of course, the domain is probably selected due the the following command:

Set-BrokerSite -DnsResolutionEnabled $true



But, can i force the domain used by Citrix ? 


We want: citrix.mynetwork.com and not citrix.mynetwork.lan


Here is a Visio scheme which explain the situation.





Best regards,


Link to comment

2 answers to this question

Recommended Posts

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Create New...