NetScaler returning "Unknown CA" during Client Certificate Authentication

NetScaler returning "Unknown CA" during Client Certificate Authentication

book

Article ID: CTX204207

calendar_today

Updated On:

Description

A Content Switch Virtual Server is configured with an SSL profile that negotiates client certificate authentication.  When the user submits client certificate, he gets an error "Unknown CA" on the browser. 

 

Resolution

Root CA installed on the NetScaler was not correct. Identified the correct root CA by opening the Certificate on the Client machine and going to Certification Path. Downloaded the Root CA from the Certification Path and installed on the NetScaler and then Mapped under CS VIP.

Problem Cause

Right CA certificate was not installed on the NetScaler
 

Issue/Introduction

This article describes an issue where a Client Certification was failing
Powered by Wolken Software