Everytime a user logs into our web interface portal from home they get the following error "The security certificate presented by this website was issued for a different website's address."
We have had this issue for as long as I can remember. Our SSL cert of the WI site is set to expire soon so I thought this may be a good time to revisit the issue.
Basically the URL for the site is different from the name on the SSL cert. The SSL cert uses the FQDN of the CAG while the WI uses a different name. The SSL cert is named CAG.JOHNSONCORP.ORG while the URL for the WI is https://portal.johnsoncorp.org/.
The cert was installed using the Citrix Access Gateway Admin Tool 4.5.8.
Do I need to get a new SSL cert issued by the 3rd party CA using the name of the WI URL? Would I still upload the cert the same way using the Citrix Access Gateway Admin Tool? Will I need to change anything in IIS on the WI server? THANKS!
Absolutely, you need a new cert. The name on the cert HAS to match the URL of the site, or you will continue to get those warnings.
Why is it called "Common Sense"? It doesn't seem all that common!
Will I have any issues uploading a cert on to the CAG with the name of the WI site versus the name of the CAG? Thanks.
It shouldn't care, but I can't make any guarantees.
Do I create the CSR on the Citrix Access Gateway (via Access Gateway Admin Tool) or the WI? I am looking at purchasing the SSL cert from Go Daddy and they only provide instructions for certs to be installed using IIS, Apache, etc. There is nothing about a Citrix Access Gateway. If I do use the CAG to create the CSR do I then change the cert I receive to a PEM and then upload it via on to the CAG via the Access Gateway Admin Tool? Thanks!!!