Jump to content
Welcome to our new Citrix community!

Callback VIP SSL Parameter Compatibility

Recommended Posts

Is TLS 1.0 still NEEDED on Callback vServer if you are trying to utilize smart card PKI to authenticate from external Netscaler onward to Storefront? We recently disabled TLS 1.0 support on our Global Domain Controllers, and I am afraid that this broke the PKI authentication piece. RSA still works; however, it doesn't utilize the Callback URL.


If I found this article (modified in May 2019): https://support.citrix.com/article/CTX235889:

Verify that the NetScaler Gateway VIP > SSL Parameters > TLSv1 and confirm that it is enabled. Make sure the Callback VIP has TLS 1.0 enabled.

Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Create New...