Date: Thu, 1 Jul 2010 11:05:24 -0500 From: Andrew Gould <andrewlylegould@gmail.com> To: FreeBSD Mailing List <freebsd-questions@freebsd.org> Subject: java citrix client on seamonkey Message-ID: <AANLkTinjZYccNDhOKUTQMB2n5VZVM_HJQA0BWT6X5r2a@mail.gmail.com>
next in thread | raw e-mail | index | archive | help
I'm trying to access applications on my employer's network via Citrix. I'm using seamonkey as my browser on FreeBSD 7.3 Release. I have installed diablo-jdk-freebsd7.i386.1.6.0.07.02.tbz. and the icedtea6-stubs package. My employer's website for Citrix access facilitates the installation of the Java client for Citrix. When I try to open an application, I get a message stating that I haven't chosen to trust GlobalSign Root CA. I installed the certificates in seamonkey; but I still get the error message. The details of the error are here: x.sdk.jsse.CitrixSSLException: You have not chosen to trust "GlobalSign Root CA", the issuer of the server's security certificate. at com.citrix.sdk.jsse.SocketFactory.createSslSocket(Unknown Source) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) at java.lang.reflect.Method.invoke(Method.java:597) at com.citrix.client.io.net.ip.proxy.o.a(Unknown Source) at com.citrix.client.io.net.ip.z.a(Unknown Source) at com.citrix.client.io.net.ip.z.a(Unknown Source) at com.citrix.client.module.td.tcp.TCPTransportDriver.s(Unknown Source) at com.citrix.client.module.td.TransportDriver.run(Unknown Source) at java.lang.Thread.run(Thread.java:619) Caused by: javax.net.ssl.SSLHandshakeException: com.citrix.sdk.jsse.i at com.sun.net.ssl.internal.ssl.Alerts.getSSLException(Alerts.java:174) at com.sun.net.ssl.internal.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1591) at com.sun.net.ssl.internal.ssl.Handshaker.fatalSE(Handshaker.java:187) at com.sun.net.ssl.internal.ssl.Handshaker.fatalSE(Handshaker.java:181) at com.sun.net.ssl.internal.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:975) at com.sun.net.ssl.internal.ssl.ClientHandshaker.processMessage(ClientHandshaker.java:123) at com.sun.net.ssl.internal.ssl.Handshaker.processLoop(Handshaker.java:516) at com.sun.net.ssl.internal.ssl.Handshaker.process_record(Handshaker.java:454) at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:884) at com.sun.net.ssl.internal.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1096) at com.sun.net.ssl.internal.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1123) at com.sun.net.ssl.internal.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1107) ... 11 more Caused by: com.citrix.sdk.jsse.i at com.citrix.sdk.jsse.a.a(Unknown Source) at com.citrix.sdk.jsse.a.a(Unknown Source) at com.citrix.sdk.jsse.a.a(Unknown Source) at com.citrix.sdk.jsse.c.checkServerTrusted(Unknown Source) at com.sun.net.ssl.internal.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:967) ... 18 more Does this mean the certificate(s) need to be installed somewhere in Java? If so does anyone know how to do this? I had the same problem on Xubuntu 9.10 but success on Xubuntu 10.4 using seamonkey, openjdk and the icedtea plugin. I would have tried using openjdk on FreeBSD; but I didn't know if it would do any good (or cause problems) since icedtea6-stubs requires diablo. Thanks, Andrew
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?AANLkTinjZYccNDhOKUTQMB2n5VZVM_HJQA0BWT6X5r2a>