Secure Gateway mismatch Cipher suite for Citrix Secure Gateway 3.3.2.
Article ID: CTX206337
Updated On:
Description
Users are unable to browse to the Web Interface page with Google Chrome via Secure Gateway 3.3.2
Secure Gateway mismatch Cipher suite.
This Happened after google release an update removing SSLv3 and RC4 on their browser.
Resolution
Disable RC4 on the Secure Gateway.
Edit the following registry Key.
[HKEY_LOCAL_MACHINE\Software\WoW6432Node\Citrix\SSL SDK\Policy]
"EnableStreamCipherOnly"=dword:00000000
Run the Secure Gateway Wizard and choose ONLY TLSv1 protocol and "GOV" cipher suite.
By Secure Gateway documentation GOV ciphersutie is:
SSL_RSA_WITH_3DED_EDE_CBC_SHA
and COM ciphersuties are:
SSL_RSA_WITH_RC4_128_MD5 (Weak)
SSL_RSA_WITH_RC4_128_SHA (Weak)
Edit the following registry Key.
[HKEY_LOCAL_MACHINE\Software\WoW6432Node\Citrix\SSL SDK\Policy]
"EnableStreamCipherOnly"=dword:00000000
Run the Secure Gateway Wizard and choose ONLY TLSv1 protocol and "GOV" cipher suite.
By Secure Gateway documentation GOV ciphersutie is:
SSL_RSA_WITH_3DED_EDE_CBC_SHA
and COM ciphersuties are:
SSL_RSA_WITH_RC4_128_MD5 (Weak)
SSL_RSA_WITH_RC4_128_SHA (Weak)
Problem Cause
This Happened after google release an update removing SSLv3 and RC4 on their browser.
Was this article helpful?
Yes
No
Powered by
