Ask a Question

Installation Instructions for Citrix Access Gateway 5

Solution

This document provides installation instructions for Citrix Access Gateway 5.0. If you are unable to use these instructions for your server, Thawte recommends that you contact the server vendor or the organization, which supports Citrix.

Step 1: Obtain and install  the SSL Certificate

  1. The Thawte certificate will be sent by email. The certificate will be included as an attachment (Cert.cer) and it will
    be also embedded in the body of the email.

    Note: The certificate can be also downloaded from your account:  
  2. When downloading the certificate from Thawte account, please select X.509 as a certificate format and copy only the End Entity Certificate.
  3. Copy and paste the certificate into a text file using Vi or Notepad. Do not use Microsoft Word or another word
    processing programs that may add characters.

    The text file should look like:
    -----BEGIN CERTIFICATE-----

              [encoded data]

    -----END CERTIFICATE-----
     
  4. Make sure there are 5 dashes to either side of the BEGIN CERTIFICATE and END CERTIFICATE and that no white space, extra line breaks or additional characters have been inadvertently added.
  5. Save the file as SSL.pem
  6. In the Access Gateway Management Console, click Certificates.
  7. Click Import and then select Server (.pem)
  8. In Select file to upload, navigate to the SSL.pem and then click Open.
     

Step 2:  Download and install the Intermediate CA Certificate

  1. Download the Intermediate CA certificate from this link:  SO1384
    Select the appropriate Intermediate CA certificate for your SSL Certificate type.
  2. Make sure there are 5 dashes to either side of the BEGIN CERTIFICATE and END CERTIFICATE and that no white spaces, extra line breaks or additional characters have been inadvertently added.
  3. Save the file as Intermediate.pem
  4. In the Access Gateway Management Console, click Certificates.
  5. Click Import and then select Trusted (.pem).
  6. In Select file to upload, navigate to the Intermediate.pem file and then click Open.
    Note:
    When you install an intermediate certificate on Access Gateway, you do not need to specify the private key or a password.
    After the certificate is installed on the appliance, the certificate needs to be linked to the server certificate.
     

Step 3: Link an Intermediate CA certificate to an SSL server certificate

  1. In the Access Gateway Management Console, click Certificates.
  2. In the Certificates table, select the server certificate to which you want to link an intermediate certificate and then click Add to Chain.
  3. In the dialog box that opens, select a certificate and then click Add for each certificate that you want to add to the chain.
  4. When you are finished building the certificate chain, select the new certificate you wish to use and select Make Active.

 

Step 4: Verify your certificate installation

To verify if your certificate is installed correctly, use the Thawte Installation Checker


Citrix Support

          For more information refer to Citrix Access Gateway appliance 5.0 product documentation