[THIN] Re: Question about Citrix Secure Gateway 2.0 and certificates...
- From: "Lucas Boyken" <lboyken@xxxxxxxxx>
- To: <thin@xxxxxxxxxxxxx>
- Date: Thu, 5 Jun 2003 14:38:03 -0500
If you have a big enough environment, you may look at Microsoft SMS
server. SMS allows you to advertise programs, patches, certs,
everything to your client population from a central or distributed
location. However, as I said, you must be able to justify the cost.
Lucas W. Boyken
Computer Systems Associates
Account Manager / Technical Representative
lboyken@xxxxxxxxx
Company Phone: 800.222.7601
Office Phone: 515.332.2751
Fax: 515.332.5687
-----Original Message-----
From: Jim Hathaway [mailto:JimH@xxxxxxxxxxxxxxx]=20
Sent: Thursday, June 05, 2003 11:59 AM
To: thin@xxxxxxxxxxxxx
Subject: [THIN] Re: Question about Citrix Secure Gateway 2.0 and
certificates...
Matt,=3D20
The only way to do this with custom certificates (say from an MS cert
server) is by getting the connecting client's to trust the MS cert
authority. You can make that available via another webpage, or e-mail it
to your users for installation on the machines they'll need to connect
with. But there is no way nativly within the 2.0 model of CSG to allow
client's to 'automaticly trust' a custom cert provider, it's more of an
MS issue than anything else.=3D20
3rd party certs, from verisign, geotrust, thawte . . Etc. Do make this
whole process a great deal easier, but if your company can't afford to
cough up $600.00 or so for 2 web certs, than you'll have to go through
the pain of getting all remote client's to trust your MS based cert
server.
It is doable . . But it's also rather annoying. On the plus side though,
once setup, there is some extra security with private certs in that any
remote connection that does not trust your Cert provider can't connect
to the farm remotely. Where as with 3rd party certs, all that's needed
generally for a remote connection is a user name and password.=3D20
HTH
J
-----Original Message-----
From: Matt McComas [mailto:Matt.McComas@xxxxxxxxxxxxxx]=3D20
Sent: Thursday, June 05, 2003 9:31 AM
To: thin@xxxxxxxxxxxxx
Subject: [THIN] Question about Citrix Secure Gateway 2.0 and
certificates...
Is there a way to automatically download a custom certificate using
Citrix Secure Gateway 2.0 for access to a Metaframe XP farm? The
documentation suggests that the only solution is to manually install the
certificate. Surely there must be a way to automate this process.
(You'll have to forgive me...I'm kind of new to certificate services.)
If someone could point me to a resource other than the CSG
Administrator's Guide and Microsoft's explanation, that would be great.
Would this whole process be easier if we used a third party certificate
authority?? Thanks!!!
Matt
********************************************************
This Week's Sponsor - Appsense Technologies
New! AppSense Optimizer is a new product from AppSense=3D20 designed to
increase the user capacity of your servers.=3D20 =
http://www.appsense.com/
**********************************************************
Useful Thin Client Computing Links are available at:
http://thethin.net/links.cfm
For Archives, to Unsubscribe, Subscribe or=3D20
set Digest or Vacation mode use the below link:
http://thethin.net/citrixlist.cfm
********************************************************
This Week's Sponsor - Appsense Technologies
New! AppSense Optimizer is a new product from AppSense=20
designed to increase the user capacity of your servers.=20
http://www.appsense.com/
**********************************************************
Useful Thin Client Computing Links are available at:
http://thethin.net/links.cfm
For Archives, to Unsubscribe, Subscribe or=20
set Digest or Vacation mode use the below link:
http://thethin.net/citrixlist.cfm
********************************************************
This Week's Sponsor - Appsense Technologies
New! AppSense Optimizer is a new product from AppSense
designed to increase the user capacity of your servers.
http://www.appsense.com/
**********************************************************
Useful Thin Client Computing Links are available at:
http://thethin.net/links.cfm
For Archives, to Unsubscribe, Subscribe or
set Digest or Vacation mode use the below link:
http://thethin.net/citrixlist.cfm
Other related posts:
