Today, I am going to show you how to install IIS SSL certificate for Citrix NetScaler, let’s follow steps to do it.

  1. Download DigiCert certificate utility for windows from follow link.

    https://www.digicert.com/util/

  2. This tool can run at server or your desktop. Assumed you run this tool from server which installed SSL certificate, if not, you need to export SSL certificate from server and import to your desktop.

  3. Open download folder and Run DigiCertUtil.exe file.

  4. On the DigiCert Certificate Utility for Windows console, select SSL and you will see all of certificates which installed at server (desktop).

  5. Select the certificate and click Export Certificate.

    on

  6. On the Certificate Export page, select Yes, Export the private key and select key file (Apache compatible format) and then click Next.

  7. Select destination folder to save Export files and then click Finish.

  8. On the Your certificate and key have been successfully exported page, click OK.

  9. Open the save destination folder and there are 3 new files create, e.g. DigitCertCA.crt, gdm_ca_wildcard_2019.crt and gdm_ca_wildcard_2019.key.

  10. Rename gdm_ca_wildcard_2019.crt to gdm_ca_wildcard_2019.cer.
  11. Login to the Citrix NetScaler web console, select Configuration, select Traffic Management, select SSL.
  12. On the SSL page, select Manage Certificates /Keys /CSRs (it’s under Tools).

  13. On the Manage Certificates page, click Upload.

  14. Select gdm_ca_wildcard_2019.cer, click Open.

  15. On Manage Certificates page, click Upload.
  16. Select gdm_ca_wildcard_2019.key, click Open.

  17. Back to SSL page, select Certificates and select Server Certificates.
  18. On the Server Certificates page, click Install.

  19. On the Install Server Certificate page, type gdm_ca_wildcard_2019 as Certificate-Key Pair Name.
  20. On the Certificate File name, click Choose File and select Appliance.

  21. On the File Browser page, select gdm_ca_wildcard_2019.cer, click Open.

  22. On the Key File Name, click Choose File and select Appliance.

  23. On the File Browser page, select gdm_ca_wildcard_2019.key, click Open.

  24. Enter your password and click Install.

  25. You will see the certificate show on the Server Certificates page.

Hope you enjoy this post.

Cary Sun

Twitter: @SifuSun

Advertisements