If you don’t know or understand certificates / root and intermediate certificate authorities, get someone who understands to follow below instructions.
I tried connecting to the company’s citrix server, but kept hitting the same error when I tried to open the connection:
Contact your help desk with the following information: You have not chosen to trust "INSERT YOUR CA HERE", the issuer of the server's security certificate (SSL Error 61)
It seems that Citrix has an alternate directory where it stores it’s trusted cert’s / certificate authorities. Even though you can see that the server’s certificate is trusted (by root CA’s) via a web browser, we need to copy those to the correct directory.
In short: Copy the root and intermediate CA’s to this directory: /opt/Citrix/ICAClient/keystore/cacerts
- Go to your company’s Citrix site and click the green HTTPS lock on the left side of the address bar.
- Click on “More info” as long as you need to get to see the certificate(s) that your Citrix site uses
- Export all certificates (Root CA, Intermediate CA and your server’s certificate) to a temporary directory
- Use the sudo command to copy these certificates to /opt/Citrix/ICAClient/keystore/cacerts
- Open the citrix connection and bask in the glory of your company’s terminal server.
5 Replies to “Citrix Receiver on Linux: SSL Error 61 ("You have not chosen to trust")”
At last a simple explanation that works!
Thanks Andy, good to hear it helped
This post helped me a lot! Better than the complicated original Citrix’s website.
Haha, thanks for letting me know Leonardo. :-), glad it helped 🙂
many thanks for posting! worked a treat