Jump to content
Welcome to our new Citrix community!

Xenapp Connection through netscaler gateway using ica file not working (protocl driver error) when i use only one ip address to switch web traffic / hdx traffic


Recommended Posts

Hello, first of all, Happy new year for all of you...

my question is easy, but 'm unable to solve my problem...

 

for internal reason , we need to have only one IP and only one fqdn for Web logging on storefront and for ICA/hdx traffic...

we don't need external connection, only on private LAN

 

 

to sum up

my VPX has same certificate as storefront, (SAN Certificate ) binded to VIP

csg.local and storefront.local

 

scenario

1 netscaler gateway  with vip 

1 storefront connected behing the netscaler to Xenapp 7.15 farm,

 

User open browser on https://gateway.private.lan, all seems ok 

Netscaler web authent appears, and user can successfull log in, the storefront 

user can show all their application available on Xenapp Farm

user click on application, the ICA file is generated fine

when user click on ICA file, Receiver is trying to connect and "Protocl Driver error appears..."

image.png.e198ffda2abe9623442b5ebf6f661cf0.png

 

when i edit ica file, i can see it uses an SSLHostProxy as required (same url as web page)

 

[APPLICATION_NAME]
Address=;10;STAXXX;XXXXXXXXXXX
AutologonAllowed=ON
BrowserProtocol=HTTPonTCP
ClearPassword=XXXXXXXX
ClientAudio=On
DesiredColor=8
DesiredHRES=0
DesiredVRES=0
Domain=\XXXXXXXXXX
DoNotUseDefaultCSL=On
FontSmoothingType=0
HDXoverUDP=Off
HTTPBrowserAddress=!
InitialProgram=#APPLICATION_NAME
Launcher=WI
LaunchReference=XXXXX
LocHttpBrowserAddress=!
LogonTicket=XXXXXXXX
LogonTicketType=CTXS1
LongCommandLine=
LPWD=
NRWD=
ProxyTimeout=30000
ProxyType=Auto
SecureChannelProtocol=Detect
SessionsharingKey=XXXXXXXXXXX
SFRAllowed=Off
SSLCiphers=all
SSLEnable=On
SSLProxyHost=gateway.private.lan,:443
startSCD=XXXXXXXXXX
Title=APPLICATIONS
TransportDriver=TCP/IP
TRWD=0
TWIMode=On
WinStationDriver=ICA 3.0

 

 

i've used the Netscaler Wizard, -> same error

i've created manually Citrix Gateway virtual server with policies  read on some Citrix guideline -> same error

 

image.thumb.png.41b3b4f8de6ec830715296f00864b837.png

 

 

i don't uderstand why this error appears....have i forgotten somtehing  on netscaler ?

 

ps: i precise when i connect directly on storefront, without using gateway, the application is launched successfully on direct connexion to the Xenapp Server

 

Thanks a lot for your help, i'm sure it missed only one thing on my configuration....

 

Best Regards

 

 

 

 

Link to comment
Share on other sites

1 hour ago, Christophe CATUREGLI said:

oups...sorry, my mistake...

on the user computer, we can see and event ID 5061, on Security logs...

this indicate an error on certificat chain on cryptography !

i've updated and changed  all the certificate chain on netscaler, and now all seems working fine....

 

Rgds 

 

 

Just wanted to ask for the certificate chain. Workspace - App tends to be a bit fussy about certificates.

 

Greetings from sunny Austria

 

Johannes Norz

CTA, CCI, CCE-N

 

Visit my blog

Try my ADC test environment

Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...