LKBEN10639: SSL error 40 with citrix secure gateway and client connection


This article has not been checked!

LKB | Created: 02/04/2020 | Version: 0 | Language: EN | Rating: 0 | Outdated: False | Marked for deletion: False

Author: Wim Peeters - Keskon GmbH & Co. KG


Symptom

You can get on the website but get a certification error which can be ignored. When you try to start an application it does not work.

Cause

This is due to wrong certifications. The webserver certification from citrix secure gateway has to be the external one.

Solution

When you connect with your client, which must have a root certificate from the own CA (or a fully trusted one) , you get an ssl error. You can ignore it but afterwards you get an ssl 40 error.

You need to create new certificates for the citrix secure gateway which represent the FQDN of the external address. (e.g. blabla.dyndns.org)

When you connect with a good certificate and get the error 59, you need to set this name in the web interface. (here your name has been written wrong, or does not represent the same name as the certified certificate) 

About the Author

Wim Peeters is electronics engineer with an additional master in IT and over 30 years of experience including time spent in support, development, consulting, training and database administration. Wim has worked with SQL Server since version 6.5. He has developed in C/C++, Java and C# on Windows and Linux in different European countries and different European languages. He writes knowledge base articles to solve IT problems and publishes them on the Lubby Knowledge Platform where he is one of the most important contributors and the main developer.

Disclaimer:

The information provided in this document is intended for your information only. Lubby makes no claims to the validity of this information. Use of this information is at own risk!