I am trying to connect to my server with the Mac Citrix Receiver. Can try to install the root certificate as Trusted -. Install and Troubleshoot the Citrix Client on Mac OS X. Citrix Receiver for MAC (Online Version) 1. Mac os x 10.8 download. Citrix Receiver for MAC (Apple App store version - [Free]). In the search field on the top-right of your screen enter 'Citrix Receiver' and download and install for Free with your Apple ID.

I am try to help our new Citrix admin troubleshoot why some of our Mac clients are getting an SSL-86 message when trying to launch an app. Here is what I have done and researched.

1) Copy the root Verisgin, Intermediary Symantec and our SSL cert to the /library/Application Support/Citrix/Keystore/ca cert folder 2) Imported all cert into the Mac KeyAccess and imported to certs into login and System and set the trust policy to 'Always allow' 3) When the user access our Citrix site they *do not* get a Cert error message We are using Citrix Netscaler 10.1 and just cutover to Storefront. I have been working on this for two days without any luck. I believe Safarie is not accepting the intermediary certificate. Please note, if a user uses Internet Explorer from a Windows machine it seems to work without issue. I might have a theory here.

1) Some of our clients are running OSX 10.5 and the latest verision of the Citrix Receiver which I can install is 11.2 but according to the Citrix site Recive version 11.8 is need for Storefront. I wonder if this is part of my issue. 2) I have exported the citrix chain from a windows workstation to a *.p7b and imported it into the MAC trusted all certs and copied it to all possible /keystore/cacert folders no go.

Now this is only affect my MAC cliets and WIndows is working fine. I noticed tha tmy Netscaler has the server level and intermediate certificates installed but not the parent root. Could this be causing the problem. How can I import this CER from my workstation to netscaler if needed.

October 29, 2018 To secure the communication between your server farm and Citrix Receiver for Mac, you can integrate your connections to the server farm with a range of security technologies, including Citrix NetScaler Gateway. For information about configuring this with Citrix StoreFront, see the documentation. Note: Citrix recommends using NetScaler Gateway to secure communications between StoreFront servers and users’ devices.

• A SOCKS proxy server or secure proxy server (also known as security proxy server, HTTPS proxy server). You can use proxy servers to limit access to and from your network and to handle connections between Citrix Receiver and servers. Citrix Receiver for Mac supports SOCKS and secure proxy protocols.

• Secure Gateway. You can use Secure Gateway with the Web Interface to provide a single, secure, encrypted point of access through the Internet to servers on internal corporate networks. • SSL Relay solutions with Transport Layer Security (TLS) protocols • A firewall. Network firewalls can allow or block packets based on the destination address and port. If you are using Citrix Receiver for Mac through a network firewall that maps the server’s internal network IP address to an external Internet address (that is, network address translation, or NAT), configure the external address. About certificates Private (Self-signed) certificates If a private certificate is installed on the remote gateway, the root certificate for the organization’s certificate authority must be installed on the user device to successfully access Citrix resources using Citrix Receiver for Mac. Note: If the remote gateway’s certificate cannot be verified upon connection (because the root certificate is not included in the local keystore), an untrusted certificate warning appears.