- This topic has 18 replies, 9 voices, and was last updated 3 years, 6 months ago by
.
-
Posts
-
Hi,
We are facing the following issue after upgrading our Wyse 3040s from ThinOS8.6 to ThinOS 9:
After successfully upgrading to the latest firmware, the client fails to contact our Citrix broker, showing the following error message: “self signed certificate in certificate chain.”
All required certificates have been applied using the WMS. We managed to fix that error by simply removing the available certificate from the local client. The login works like a charm right after a reboot.
Is this a known issue? Anything we need to adjust in our WMS? For sure, we don’t want to manually adjust each client as we use an entire fleet.
The upgrade has been conducted by updating from version 8.5 to 8.6. The final upgrade to 9.0 was applied afterwards.
Here’s the client log with the errors mentioned above:
2020-09-25T07:20:55.955Z:[INFO] [Citrix storefront]: request error => Error: self signed certificate in certificate chain
2020-09-25T07:20:55.957Z:[INFO] [Citrix storefront]: roaming() error => Error: self signed certificate in certificate chain
2020-09-25T07:20:55.957Z:[INFO] [Citrix storefront]: login failed error => Error: self signed certificate in certificate chain
2020-09-25T07:20:55.963Z:[INFO] [vdimgr] tryLogin [https://Citrix Broker URL] err => Error: self signed certificate in certificate chain
2020-09-25T07:20:55.964Z:[ERROR] [vdimgr] tryTask error => Error: self signed certificate in certificate chain
2020-09-25T07:20:55.965Z:[ERROR] [vdimgr] tryTask error => Error: self signed certificate in certificate chainThis looks like a certificate issue.
What 9.0 version are you using?CG
I’m seeing/having the same issue “Error: self signed certificate in certificate chain”.
ThinOS version 9.0.3030 with Citrix 2006_1130 pkg. Same terminal works from External. When brought into the Internal LAN, that’s when the error occurs. Makes no sense as it’s hitting the same Netscaler Gateway VIP from inside and outside. What is thinOS/workspace checking during prior to connecting?
we got the same issue.
thinos 8.6 works fine with our root certificate, upgrade to the latest thinos 9.x produces the certificate error, removing local stored certificate, reboot, obtain the same certificate by wms and it works again.
that is a bad issue if you want to upgrade all devices, because actually we have to do this workaround on any device
Yes time and date are correct. if we delete the root cert and install it again it works. same certificate
What ThinOS 9.0 version are you using? What is your upgrade path?
CG
First we upgrade from 8.6_206 to Version 9.0_011.36 and after that to the version V9.0.3030
the issue occurs also on 9.0_011.36, uninstall and install again the certificate works, but is not the way we want to do this ^^Have you checked with Dell support already?
Have you added the certificate to the 9.x policy also?
CG
we will open a case for that issue.
yes we added the certificate also to the 9.x policy
I have had the same issue, working fine with WTOS 8.6 and not with 9.
Turned out that I was missing a root cert from our PKI in the chain.okay, but what i do not understand is, that if we manually uninstall the policy-based installed certificate and install the same certificate again by policy it works ^^
I’m receiving mail notification for that thread but haven’t subscribed to it nor participated.
can you remove me please?
Yep I’m getting notifications for all replies. Also when I login I seem to have Site Admin access. Might want to fix that pretty quickly!
- You must be logged in to reply to this topic.