Flaming - Technical Support Birmingham and Solihull IT support solihull west midlands
Flaming Support
Follow

SSL Installation - Citrix Access Gateway

You will receive some certificate files from comodo that you will need to combine into a single text file to upload into your Citrix Access Gateway.

Private Key ( matching private key for your certificate )
Server Certificate ( Your site certificate supplied in the zip file from comodo )
Intermediate Certificate/s ( UTNAddTrustServerCA.crt )
Root Certificate ( AddTrustExternalCARoot.crt )


More information on converting from a PFX file to a useable format for your Citrix Access Gateway can be found on the below URL's.

http://support.citrix.com/article/CTX106028

Converting a PFX file for use with apache

  • You will need to run the following command with open SSL ( available from openssl.org)
  • openssl pkcs12 -in mypfxfile.pfx -out outputfile.txt –nodes
  • This will produce a file that contains the Private key and all the certificates contained within the PFX file (please note it is recommended that you select the option to include all the certificates in the certification path when creating the PFX file for use on apache.)
  • You will then need to copy out the relevant pieces of information and create the following files from the outputfile.txt you created above for use with apache.
  • your private key file
    your certificate file
    your CA file / files

 

**** please note that when you create your PFX file you will need to include all the certificates in the certification path ( this is an option that needs to be checked )

An example of what this should look like is below

-----BEGIN RSA PRIVATE KEY-----
BgkqhkiG9w0BAQUFADBvMQswCQYDVQQGEwJTRTEUMBIGA1UE
…………..more text………… (Your Private Key)
IjAgBgNVBAMTGUFkZFRydXN0IEV4dGVybmFsIENBIFdvcmsx
-----END RSA PRIVATE KEY-----
-----BEGIN CERTIFICATE-----
MIIFZTCCBM6gAwIBAgIQCTN2wvQH2CK+rgZKcTrNBzANBgkq
…………..more text………… (Your Server Certificate)
Fw0wMDExMTAyMzU5NTlaMIHHMQswCQYDVQQGEwJVUzETMBEG
-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----
MIIEMTCCA5qgAwIBAgIQI2yXHivGDQv5dGDe8QjDwzANBgkq
…………..more text………… (Your Intermediate Certificate)
m8hDjswMKNXRjM1GUOMxlmaSESQeSltLZl5lVR5fN5quQv5t
-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----
MIIEpjCCA46gAwIBAgIQRurwlgVMxeP6Zepun0LGZDANBADB
…………..more text………… (Your Root Certificate)
BBAGCNwoDAwYJYIZIAYb4QgQBMBEGA1UdIAQKMAgwBgYE
-----END CERTIFICATE-----


Once you have created this file in the required format you will need to upload this to your Citrix Access Gateway


1) Point a browser to the Access Gateway administration portal or HTTPS port 9001 (example https://access-gateway-server:9001 )

2) Log on as root. The default password is rootadmin.

3) Click the Maintenance link at the top of the page.

4) Click the Browse button next to the Upload certificate field. Browse to the file that you have created and click Upload.

Powered by Zendesk