Difference between revisions of "SSL error with Citrix ICA client on Linux"

From froelix.com - Wiki

Jump to: navigation, search

Latest revision as of 21:34, 12 May 2016

Problem:

The Citrix ICA client does not connect to your corporate network.
After launching the client it displays the following error message:

You have chosen not to trust “<CA which is used by your corporate network>”, the issuer of the server’s security certificate (SSL error 61).

Solution:

The Linux version of the Citrix ICA client brings only a small set of root CAs which are trusted.
Add the additional CAs which are required by copying the certificates to the following directory:

sudo cp <AnyCA.crt> /opt/Citrix/ICAClient/keystore/cacerts/

Alternatively create symlink to the system ca-certificates:

sudo ln -s /usr/share/ca-certificates/mozilla/* /opt/Citrix/ICAClient/keystore/cacerts/

Finally run the following command to rehash the certificates and you should be fine...

sudo c_rehash /opt/Citrix/ICAClient/keystore/cacerts/

Note:

For more details, see Ubuntu Help.

Retrieved from "https://www.wiki.froelix.com/index.php?title=SSL_error_with_Citrix_ICA_client_on_Linux&oldid=113"