Citrix installs a new "Citrix XenApp/XenDesktop HDX Service" certificate in the Personal store which breaks the automation of the Enable-VdaSSL.ps1 script for those of us who are using SSL everywhere. Previously the only certificate in this store was the one that was assigned via group policy to allow secure communication.
Question
Russ HARGROVE
Citrix installs a new "Citrix XenApp/XenDesktop HDX Service" certificate in the Personal store which breaks the automation of the Enable-VdaSSL.ps1 script for those of us who are using SSL everywhere. Previously the only certificate in this store was the one that was assigned via group policy to allow secure communication.
to fix the problem, I had to modify the task scheduler powershell script from the one mentioned in this article: https://www.citrix.com/blogs/2014/12/11/how-to-secure-ica-connections-in-xenapp-and-xendesktop-7-6-using-ssl/
change from:
Enable-VdaSsl.ps1 -Enable -Confirm:$False
to:
Enable-VdaSSL.ps1 -Enable -CertificateThumbPrint (Get-ChildItem -path cert:\LocalMachine\My | Where-Object -FilterScript {$_.Subject -eq ""} | Select-Object -ExpandProperty Thumbprint) -Confirm:$False
Link to comment
5 answers to this question
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now