Citrix issued a maintenance release last week for the Access Gateway. This is an important release for what's coming next with StoreFront and CloudGateway. It gives the possibility to customize the logon point in a very easy way. I took some screenshot to show you how simple it is to customize your logon point. You have the ability to customize each logon point. You need to log on your Access Gateway : https://FQDN/lp/adminlogonpoint then click on the Management top menu and chose Logon Points One you have your Logon Points list, you need to edit the one you want to customize by clicking on the brand new Customization tab : You can either build your own template easily, chose the default grey Logon Point or the Green Receiver one. You can now switch from the default grey Logon Point : to the new Green Receiver one in just few clicks : New features coming with the 5.0.4 maintenance release : Adding Web Resources for a Basic Logon Point in Access Gateway When you create a basic logon point, you can add Web resources that users can access when they log on with Citrix Receiver. Web resources define the Web pages, sites, or applications that you want to secure in Access Gateway. For more information, see Adding Web Resources to a Basic Logon Point in the Citrix eDocs library. Customizing the Access Gateway Logon Page You can create a custom logon page by configuring the settings in either a basic or SmartAccess logon point. You can use the default Access Gateway logon page, use the Citrix Receiver design for your logon page, or create your own logon page with your graphics and logo. For more information, see Customizing the Access Gateway Logon Page in the eDocs library. New Version of the Access Gateway Plug-in for Access Gateway 5.0.4 Access Gateway 5.0.4 contains an updated version of the Access Gateway Plug-in. Changes made to the internal framework of the Access Gateway appliance prevent compatibility with earlier versions of the plug-in. Users must install Access Gateway Plug-in Version 5.0.4. Important: To install or upgrade to Version 5.0.4 of the plug-in, users must be an administrator or have administrator rights on the user device, unless you update the plug-in by using an Active Directory group policy. You can upgrade the plug-in by using one of the following methods: Push the Access Gateway Plug-in to…

In this post I explain how I tried to troubleshoot this issue, if you need the solution, go at the end of this post. My company (Activlan) had to renew our certificate installed on our Citrix Secure Gateway 3.1.3. As you might know, Citrix has issued some virtual appliance and I had to chose between, Citrix Access Gateway 4.6.2 VPX and Netscaller VPX Express (Free !). My choice was to integrate a Citrix Access Gateway (CAG) mainly because we are using other product to manage VPN to all our customers and I wanted to install what I needed, nothing less, nothing more. So here we go, I got my xva file from MyCitrix account and I just deploy it on our XenServer, very easy, very simple, just some clicks. Once installed and basics configuration set, I had to generate the CSR (Certificate Signing Request) and wait for Verisign to send me the certificate I had to use with the CAG. This was a big adventure and of course I should have read the manual before, and configuration isn't so easy but I guess when you do it all day long you begin to know everything and I can say now, I know how to troubleshoot a CAG from the client side to the Web Interface. This error I got with my Mac didn't show up on my Windows computers. In fact Apple doesn't have a very big list of root certificate install on their OS compare to Windows. Here is the error message I got when I wanted to launch published application (XenApp). I was able to login in the CAG and the Web Interface as well, but not able to launch application. SSL Error 61: You have not chosen to trust "Verisign Class 3 Secure Server CA - G2", the issuer of the server's security certificate. Error number: 183 Sexy message, isn't it ? After searching around a bit I found this thread on Citrix's forums : http://forums.citrix.com/message.jspa?messageID=447656 everything went clear, I didn't had the root certificate on my computer to validate my brand new certificate from Verisign... So I tried to find how to get these root certificates, especially Verisign Class 3 Secure Server CA - G2, the one I needed. I found this Verisign address http://www.verisign.com/repository/roots/pca_certificate.html where you just have to fill a form to get a zip with everything what you might need : As you…