Issue: We have deployed the three certificates using FAS console and we were able to view and access them in certificate authority console. As per a misconfiguration, we have deleted those three certificates from certificate authority. When we tried to redeploy the certs in our certificate authority server, we ended up in below error:
System.Runtime.InteropServices.COMException (0x80072071): CertEnroll::CX509CertificateTemplateADWritable::Commit: An attempt was made to add an object to the directory with a name that is already in use.
Error: There is no Citrix XenApp Server configured on the specified address : [Socket error 10060]
Solution:
Mostly this is port problem. If you are connecting to storefront url directly without netscaler, from user’s device, open 2598 and 1494 ports to the VDA servers. Without this, you will see “Connection in progress…” bar but it wont move to “connection established Negotiating capabilities…” step.
After a min, it shows “There is no Citrix XenApp Server configured on the specified address : [Socket error 10060]” error.
In a Citrix NetScaler appliance, the Management CPU is responsible for handling management tasks such as configuration, monitoring, and reporting. On the other hand, the Packet Engine CPU is dedicated to processing network traffic, including tasks like load balancing, SSL offloading, and content switching.
The Management CPU is used for handling administrative tasks and does not directly impact the processing of network traffic. It is responsible for managing the configuration of the NetScaler appliance, monitoring its performance, and handling administrative tasks such as logging and reporting.
Issue:
When users click on the app, it loads the receiver, starts the dialog box which says loading profile, scripts, getting ready etc and the progress bar completes. Just before the application launch, it disappears. Session is created on the server but application wont launch on user’s device.
Error:
The Citrix Universal DLL injection driver has encountered an unexpected error.
Event id: 1005 on the app server(VDA server).
Solution:
Restarting the app server will temporarily fix the issue.
In order to disable citrix workspace for mac software auto update in macbook, run below commands on elevated macbook terminal.
1 2 3 4 5 6 7 8 9 # To view all com folders for citrix sudo launchctl list | grep com.citrix /Library/LaunchDaemons - com.citrix.ctxworkspaceupdater.plist - rename it to _old /library/application support/citrix receiver/ctxworkspaceupdater - rename it to _old /library/application support/citrix receiver/Citrix Workspace Updater - rename it to _old Open citrix workspace and check for updates.
Issue:
Randomly on netscaler 13.1 51.15, 13.0.71.44 to 13.0.85.15 versions, when users open citrix netscaler gateway portal page, enter their credentials and click signin, they are redirected to the citrix netscaler gateway portal page again with username and password prompt instead of logging in and showing the applications/desktops.
Solution:
Goto your storefront server, select stores to the left, and select “manage receiver for web sites” option to the right. select your receiver for web URL, click configure.
Issue:
After logging into netscaler gateway portal, users get “Cannot complete your request” error.
Solution:
You should be able to ping your storefront base URL from your storefront server. If not, you ll get “there was an error during a resources list request” error in your storefront server. End users will get “Cannot complete your request” error after logging into the netscaler gateway portal.
You will have multiple storefront servers for your citrix site.
Issue:
When you login to storefront or netscaler gateway, users would end up in “There are no apps or desktops assigned to you at this time” error.
Solution:
There are multiple solutions to this error.
First check if user is added to the delivery group (if restricted groups or users has access on delivery group) Add user to the application If your storefront is configured as https on netscaler session policy, make sure you have certificate installed on the storefront.
Introduction CVE-2023-4966 and CVE-2023-4967 are critical and high-severity vulnerabilities, respectively, that affect NetScaler ADC and NetScaler Gateway from Citrix. These vulnerabilities can be exploited to disclose sensitive information or cause a denial of service (DoS) condition on affected devices.
CVE-2023-4966 is a sensitive information disclosure vulnerability that can be exploited by an attacker to remotely access sensitive information from vulnerable NetScaler ADC and NetScaler Gateway appliances. This information may include usernames, passwords, cookies, and other authentication credentials.
Issue After logging into netscaler gateway, we received “Http/1.1 Internal Server Error 43531” error. Upon looking at the configuration, STA server in the netscaler gateway is marked as down. DDC and storefront are installed on same server. Under traffic management/lb vip was also marked as down and the storefront service group in that lb vip was down. All the probes sent to that STA/storefront server were not successful. TCP-default monitor was attached to the storerfront service group.
