StoreFront 2.6 web server installed on Windows 2012
NetScaler 11.0 64.34.nc
Load-balanced vServer configured on NetScaler pointing to StoreFront server.
The certificate installed on my StoreFront 2.6 web servers recently expired. When I replaced the certificate on the server, my load-balanced vserver stopped working--attempting to access the page in IE or Chrome eventually results in a time-out. The old expired certificate was issued as an SHA-1 certificate; the new one is SHA256 (all the way up the cert chain). Firewall logs show that the connection is being reset by the StoreFront server, and the Windows System event log is filled with schannel 36888 and 36874 TLS-related errors. If I bind the expired certificate to the StoreFront web site, it all starts working again.
So far, all of my Citrix forum and Google searches for a solution have been in vain. I've looked at the following discussions:
All seem to have similar issues similar, but nothing indicated in them corrects the issue. Has anyone else experienced similar issues and found a solution? Thanks.