http://www.brianmadden.com/forums/163.aspxWeb Interface, Citrix Secure Gateway, Secure Ticket Authority, NFuse, etc.enCommunityServer 2008.5 (Build: 30929.2835)http://www.brianmadden.com/forums/thread/170401.aspxTue, 29 May 2012 01:56:27 GMTa59ee4a9-9560-4436-b47c-b649e4ba6aaa:170401jojamie0http://www.brianmadden.com/forums/thread/170401.aspxhttp://www.brianmadden.com/forums/commentrss.aspx?SectionID=163&PostID=170401<p>Hi</p> <p>I have just installed a new certificate onto the Access Gateway (version 4.6.3). Now when connecting externally I get the following error:</p> <p>SSL Error 59: The server sent a security certificate identifying&nbsp;&quot;*.NEWBusinessName.org.nz&quot;, the SSL connection was to&nbsp;&quot;apps.businessname.org.nz&quot;.</p> <p>The old cert was for &quot;apps.businessname.org.nz&quot;</p> <p>New new cert is a wildcard &quot;*.NEWBusinessName.org.nz&quot;</p> <p>I have changed the External FQDN in the Access Gateway to reflect the new certificate.</p> <p>Now whenever I launch a new application the .ICA file contains SSLProxyName=apps.businessname.org.nz and I get SSL Error 59.</p> <p>Changing the ICA manually results in the connection working.</p> <p>Can anyone help me to identify where the issue lies and how to resolve it. I have looked at the Web Interface and I have been unable to find a resolution.</p> <p>Currently the Web Interface is set to DIRECT access method, and this did work until the new cert was installed.</p> <p>I have changed this to GATEWAY DIRECT, and the issue remains. If I can change what is generating the ICA file and inserting the old FQDN I am sure it will fix the problem.</p> <p>&nbsp;</p> <p>Thanks</p><div style="clear:both;"></div>