Skip to main content

Citrix Gateway Plug-In Certificate Access denied

We use citrix gateway Plugin+ nedsacler as our full VPN solution .

The gateway is configured to check for device certificate issued by the PKI infrsatructre

In one of the machines we found that the gateway plugin was not requesting to choose the certificate the first time it was opened. So it was failing the EPA check.

We tried uninstall and resinstall of the plugin however it still would not open request to choose the device certifciate .

We manullay edited the config.js at C:\Users\User01\AppData\Local\citrix\AGEE  and placed the dummy devCert highlighted in bold in the example:

{"auto open homepage":false,"connectingTo":"https://vpn.domain.com","connections":[{"devCert":"1846168a1880868155848661825646166a1868868155848a8c664e6f121468284f606c28416f6d18666e10166a186086815584818c624e4f412846151468656e1460616614606f6e,a88212e0808f64e4aa5e500e88","name":"vpn.domain.com","url":"https://vpn.domain.com"}],"deaug logging":true,"language":null,"lastUserName":"user01","local lan access":null}

After this the gateway Plug-in asked for choosing the certificate and VPN worked.

Hope this helps
Labels:

Comments

Post a Comment

Popular posts from this blog

Group Policy Object did not apply because it failed with error code '0x80070534 No mapping between account names and security IDs was done

One of our servers was losing the Local Admin settings as we control them using GPO (restricted Groups) We were receiving the following event on this particular server : Event ID 4098 Application Event Log The computer 'Administrators (built-in)' preference item in the 'Servers Local Admins {odjd9DBD-22AF-48EA-ADF5-F42ADE4182hst}' Group Policy Object did not apply because it failed with error code '0x80070534 No mapping between account names and security IDs was done.' This error was suppressed. To fix the issue we deleted all the folders from the following location and rebooted the server C:\ProgramData\Microsoft\Group Policy\History Hope this helps.
Post a Comment
Read more

DSS WSUS server fail to download Updates HTTP status 404: The requested URL does not exist on the server.

When managing a Downstream WSUS server , it may happen that when a patch is approved it tried to immediately download it form the source server (USS) Sometime we see errors in event viewer stating that the the download failed Event ID: 364 Content file download failed. Reason: HTTP status 404: The requested URL does not exist on the server. Source File: /Content/6E/72131F469F73C884B32124746BAFCA2C8E0A106E.cab Destination File: E:\WSUS\WsusContent\6E\72131F469F73C884B32124746BAFCA2C8E0A106E.cab Event ID 10032 The server is failing to download some updates. We also see following entries in softwaredistribution.log 2016-09-26 07:53:29.287 UTC Warning WsusService.3 ContentSyncAgent.ProcessBITSNotificationQueue ContentSyncAgent recieved Failure for Item: f52f0b8a-2b22-43cf-933e-af8de6b11eb6, Item fails 2016-09-26 07:53:29.287 UTC Info WsusService.3 ContentSyncAgent.ContentSyncSPFireStateMachineEvent ContentSyncAgent firing Event: FileDownloadFailed for Item: f5...
Post a Comment
Read more

iDRAC 7 Shows no Signal in Virtual Console Preview

Recently i logged on to iDRAC for one of our Dell R720 servers,however somehow the console redirection did not work at all. I kept on seeing No Signal on the Virtual console Preview. I tried Rebooting the server but that did not help. Finally i clicked on Reset iDRAC and this did the trick. It may take around 2 -5 minutes before you can access iDRAC page again. I had to power on the server through iDRAC before anything showed up on console. Hope this Helps.
3 comments
Read more