Citrix Receiver for Mac 12.3 contains all ﬁxes that were included in Versions 12, 12.1, 12.1.100, and 12.2, plus the following, new ﬁx: If Citrix Receiver for Mac is configured to use a proxy server, Secure Socket Layer (SSL) connections can fail. Citrix Receiver 12.7 for Mac requires Citrix kernel extension to be loaded for Generic USB Redirection to function properly. If users see the “System Extension Blocked” prompt when launching a Citrix Receiver desktop or application.
Symptoms or Error
Receiver for Mac users receive the following error message when accessing StoreFront or Web Interface applications:
'SSL Error 61: You have not chosen to trust 'Certificate Authority', the issuer of the server's security certificate. Error #: 183'
Important! This article is intended for use by System Administrators. If you are experiencing this issue and you are not a System Administrator, contact your organization’s Help Desk for assistance and refer them to this article.
Update to the Latest Receiver Version
- Upgrade to the latest version of Receiver to verify if this resolves the issue.
- If you are using SHA2 certificates then the older version of Receiver does not support these certificate. Refer to CTX200114 - Citrix Receiver Support for SHA-2 to view the Receiver versions which supports SHA-2 certificates.
Citrix Receiver Mac Not Working
If this does not resolve the issue then proceed to the next section.
For information on Receiver feature updates refer to - Citrix Receiver Feature Matrix.
Citrix 12.6 For Mac
Missing Root/Intermediate Certificate
Citrix Receiver For Mac
This error message suggests that the Mac client device does not have the required root certificate/intermediate certificate to establish trust with the certificate authority who issued the Secure Gateway/NetScaler Gateway server certificate.
Complete the following steps to resolve this issue:
Open the Keychain Access in the Applications > Utilities folder:
Highlight the X509 Anchors Keychain in the menu (you might have to authenticate to do this).
Browse through the Certificate Authorities to find the company that has issued the certificate that is being used by the Secure Gateway/NetScaler Gateway – for this example, Thawte Premium Server CA:
Download counter strike go. Highlight the certificate and select File > Export from the menu bar:
The default File Format should be Certificate (.cer).
Note: You might need to rename the certificate to a .CRT extension for the client to properly identify the certificate.
Save the certificate to the ApplicationsCitrix ICA Clientkeystorecacerts folder (create this folder if it does not exist):
CTX101990 - Error: 'The server certificate received is not trusted (SSL Error 61)' for Receiver Users
CTX203362 - Error: 'The server certificate received is not trusted (SSL Error 61)' on Receiver for Linux
CTX200836 - Error: 'SSL Error 61: You have not chosen to trust 'Certificate Authority'..' When Launching Apps with Citrix Online Plug-in