The certificate will automatically install itself and be listed under System as UserTrust RSA Certificate Authority with an expiration date in 2038. However, it will have a red X on it, meaning that it is not yet trusted. Double-click on the UserTrust RSA certificate to bring up. Conditions 1 and 2 may be addressed by configuring the server to send Trust Chain C. Condition 3 requires the client to be reconfigured to either: 1) use the operating system or vendor managed truststore or 2) explicitly trust the USERTrust RSA Certification Authority root or the alternative legacy AAA Certificate Services root. Issuer: C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO RSA Certification Authority Validity Not Before: Jan 19 00: GMT Not After: Jan 18 23: GMT Subject: C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO RSA Certification Authority Subject Public Key Info. Trust Chain B (Modern, Preferred) - PEM encoded Root - USERTrust RSA Certification Authority (Exp: Jan 18, 2038) Intermediate - InCommon RSA Server CA (Exp: Oct 5, 2024). Intermediate and Root. Trust Chain C (Legacy compatibility) - PEM encoded Root - AAA Certificate Services (Exp: Dec 31, 2028) Intermediate 2 - USERTrust RSA Certification Authority (Exp: Dec 31, 2028) Intermediate.
KB ID 0001520 ProblemAfter a colleague deployed Citrix for a customer the other day, they complained that they had a mac user that was getting certificate errors. They had a publicly signed wildcard certificate, but this user was still having problems. ![]() After I heard a few “tell him to stop using a mac” comments, I said, “I’m using a MacBook here, would you like me to test it?” The URL opened fine in Safari, and the certificate looked good (all green), I was prompted to install the Citrix receiver, and was presented with a session to open, when I did so, I got this; You have chosen not to trust {Certificate-Name} the issuer of the servers security certificate. SolutionHead over to https://www.sslchecker.com and put your Citrix URL in and check it, I found this. So I downloaded the two certificates it said I was missing. Note: For someone who works with certificates, this makes no sense, (as I got to the portal without an error). I had to trust the root CA, and its intermediate CA, (what’s being called a Chain Cert below). But I thought I’d play along to see what happened. Usertrust Rsa Certification Authority Mac Download Software‘Double Click’ each downloaded certificate, then choose ‘Add’, (repeat for each certificate in the chain). Close any open Citrix receiver sessions, restart you browser, and try again. Related Articles, References, Credits, or External LinksUsertrust Rsa Certification Authority MissingUsertrust Rsa Certification Authority SectigoNA Comments are closed.
|
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. Archives
December 2020
Categories |