This will ensure that the certificate gets installed in Windows, if it’s not already present. 2) In Windows, log out of the Citrix gateway. 3) launch Internet Explorer if not already running. When validating a server certificate, Citrix Receiver for Android now uses all the certificates supplied by the server (or gateway) when validating the server certificate. As in previous Citrix Receiver for Android releases, it then also checks that the certificates are trusted.
A list containing the majority of Citrix Workspace app for Android (formerly Receiver for Android) support articles collated to make this page a one stop place for you to search for and find information regarding any issues you have with the product and its related dependencies.
![Ssl certificate not trusted error Ssl certificate not trusted error](/uploads/1/2/5/8/125801871/441036282.png)
The page is updated daily with new support articles and information. Articles will change from time and if information here is outdated or incorrect please let me know using the comments. Links may also expire or change so if you find broken links, please again let me know. For each issue, known product versions affected are recorded however that does not mean product versions that aren’t listed are not affected.
There is a search box that you can use if looking for a specific fault. For example if you have an error code or error message, use that to perform a search. You can also use your browsers search feature which will perform a search against the whole page based on the words you enter.
Receiver for Android / Workspace app for Android:
1 | When launching any application you receive error 'Cannot Connect: Error connecting to the session reliability server. Error tunneling through the proxy'. | This could be caused by firewall port blockage either internally or externally via NetScaler. It could also be down to STA servers either not configured on NetScaler or down. | https://support.citrix.com/article/CTX225834 | |
2 | As you type into an application such as Word or Notepad, the virtual keyboard appears on screen. Eventually after several lines of text some of that text will begin to dissapear underneath the keyboard. | Citrix are aware of this issue and a solution is under investigation. | https://support.citrix.com/article/CTX223986 | |
3 | When adding an account to Receiver for Android that goes through NetScaler Gateway, a Receiver for Web logon page appears instead of showing a list of applications. | Disable 'Set the unified Receiver experience as the default for this store' within StoreFront. | Citrix Receiver for Android 3.9.1. | https://support.citrix.com/article/CTX216410 |
4 | The keyboard does not automatically display and users have to manually select it to open. | Check the 'Automatic keyboard display' policy within Citrix Studio is set to 'Allowed'. | https://support.citrix.com/article/CTX220263 | |
5 | The keyboard does not automatically display when clicking into an editable area of an application such as Word or Notepad. iOS works fine however Android does not behave the same. | iOS operates differently due to underlying functionality and it is expected for Android Receiver versions to not automatically show the keyboard. | https://support.citrix.com/article/CTX223781 | |
6 | Receiver for Android may ask for your password twice when logging on to NetScaler Gateway. | This is a known issue. You should only be prompted for the password twice when setting up the account and not thereafter. | Citrix Receiver for Android 3.11. | |
7 | You receive the error message 'The server certificate is not trusted' when connecting to NetScaler Gateway. | Stricter certificate validation checks have been included in Receiver for Android 3.12 and above versions. You must make sure that NetScaler provides the complete certificate chain to clients and that none of the certificates in that chain have expired. | Citrix Receiver for Android 3.12. | https://support.citrix.com/article/CTX224709 |
8 | When docking a Samsung S8+ with an existing ICA session to a DeX docking station, the session does not continue on the new display and instead returns error 'Error connecting to the session reliability server' or 'Error tunneling through the proxy'. | Upgrade to Receiver for Android 3.12.2. | https://support.citrix.com/article/CTX227985 | |
9 | Receiver for Android might not work properly with NetScaler Gateway integrated with a XenApp Services website. | This is a known issue. Delete and then re-add the account again. | Citrix Receiver for Android 3.13.2. | https://support.citrix.com/article/CTX231776 |
10 | When launching a desktop you receive error 'HdxSdkErrorDomain_Session error 8'. | This is resolved in a NetScaler update. | Citrix Receiver for Android. | https://support.citrix.com/article/CTX232099 |
Active7 years, 6 months ago
We have a problem with a specific website which our staff need to access via Internet Explorer on our Citrix server (running Win2K3).
When connecting via SSL (a requirement), the site is inaccessible because the certificate issuer's certificate is not in the Trusted Root Certification Authorities.
If I manually import the certificate chain (exported my PC), it works, but I'd rather not do that for each user: Is there a way I can import the certificate for all users?
I found this MS KB article which details importing certificates in to the Local Computer store to resolve a different issue; would that apply here?
ChrisChris
2 Answers
Importing the certificate into the machine's Trusted Root Certificate store will resolve your issue. It's not necessary for the CA to be trusted by each user. If the machine trusts the CA then the users will 'inherit' that trust automatically.
The procedure in that KB article is basically correct. Be sure to choose the computer when adding the Certificates snap-in and the 'Trusted Root Certificate Authorities' when choosing the store to place the certificate into.
Evan AndersonEvan Anderson136k1515 gold badges177177 silver badges316316 bronze badges
![Citrix Receiver Certificate Not Trusted Citrix Receiver Certificate Not Trusted](/uploads/1/2/5/8/125801871/479289136.png)
Why not deploy the certificate via Group Policy? This link can guide you on how to do this.
Nic YoungNic Young81811 gold badge1515 silver badges2626 bronze badges