If you have a big enough environment, you may look at Microsoft SMS server. SMS allows you to advertise programs, patches, certs, everything to your client population from a central or distributed location. However, as I said, you must be able to justify the cost. Lucas W. Boyken Computer Systems Associates Account Manager / Technical Representative lboyken@xxxxxxxxx Company Phone: 800.222.7601 Office Phone: 515.332.2751 Fax: 515.332.5687 -----Original Message----- From: Jim Hathaway [mailto:JimH@xxxxxxxxxxxxxxx]=20 Sent: Thursday, June 05, 2003 11:59 AM To: thin@xxxxxxxxxxxxx Subject: [THIN] Re: Question about Citrix Secure Gateway 2.0 and certificates... Matt,=3D20 The only way to do this with custom certificates (say from an MS cert server) is by getting the connecting client's to trust the MS cert authority. You can make that available via another webpage, or e-mail it to your users for installation on the machines they'll need to connect with. But there is no way nativly within the 2.0 model of CSG to allow client's to 'automaticly trust' a custom cert provider, it's more of an MS issue than anything else.=3D20 3rd party certs, from verisign, geotrust, thawte . . Etc. Do make this whole process a great deal easier, but if your company can't afford to cough up $600.00 or so for 2 web certs, than you'll have to go through the pain of getting all remote client's to trust your MS based cert server. It is doable . . But it's also rather annoying. On the plus side though, once setup, there is some extra security with private certs in that any remote connection that does not trust your Cert provider can't connect to the farm remotely. Where as with 3rd party certs, all that's needed generally for a remote connection is a user name and password.=3D20 HTH J -----Original Message----- From: Matt McComas [mailto:Matt.McComas@xxxxxxxxxxxxxx]=3D20 Sent: Thursday, June 05, 2003 9:31 AM To: thin@xxxxxxxxxxxxx Subject: [THIN] Question about Citrix Secure Gateway 2.0 and certificates... Is there a way to automatically download a custom certificate using Citrix Secure Gateway 2.0 for access to a Metaframe XP farm? The documentation suggests that the only solution is to manually install the certificate. Surely there must be a way to automate this process. (You'll have to forgive me...I'm kind of new to certificate services.) If someone could point me to a resource other than the CSG Administrator's Guide and Microsoft's explanation, that would be great. Would this whole process be easier if we used a third party certificate authority?? Thanks!!! Matt ******************************************************** This Week's Sponsor - Appsense Technologies New! AppSense Optimizer is a new product from AppSense=3D20 designed to increase the user capacity of your servers.=3D20 = http://www.appsense.com/ ********************************************************** Useful Thin Client Computing Links are available at: http://thethin.net/links.cfm For Archives, to Unsubscribe, Subscribe or=3D20 set Digest or Vacation mode use the below link: http://thethin.net/citrixlist.cfm ******************************************************** This Week's Sponsor - Appsense Technologies New! AppSense Optimizer is a new product from AppSense=20 designed to increase the user capacity of your servers.=20 http://www.appsense.com/ ********************************************************** Useful Thin Client Computing Links are available at: http://thethin.net/links.cfm For Archives, to Unsubscribe, Subscribe or=20 set Digest or Vacation mode use the below link: http://thethin.net/citrixlist.cfm ******************************************************** This Week's Sponsor - Appsense Technologies New! AppSense Optimizer is a new product from AppSense designed to increase the user capacity of your servers. http://www.appsense.com/ ********************************************************** Useful Thin Client Computing Links are available at: http://thethin.net/links.cfm For Archives, to Unsubscribe, Subscribe or set Digest or Vacation mode use the below link: http://thethin.net/citrixlist.cfm