Certificate Security Provider in a Published app Environment

When configuring a Certificate Security Provider in a published app environment (Citrix, RemoteApp, XenApp) as a Security Provider, the user who will run Remote Desktop Manager in the RemoteApp environment (Citrix) will require a Read permission on the certificate. If the Read permission isn't correctly set, Remote Desktop Manager will generate the CryptographicException - Keyset does not exist error dialog.

KB4208.png

Step-by-step guide

These steps require that the certificate has been successfully installed on the machine on which Remote Desktop Manager will run.

  1. Open Local Machine Certificate Manager on the machine (certlm.msc).
  2. Locate the Certificates.
  3. Right click on Certificates - All Tasks - Manage Private Keys.
    KB4859.png
  4. Grant the Read permission over the certificate file to the proper group(s) or user(s).

The following Microsoft blog article provides more method on how to find the certificate file: https://docs.microsoft.com/en-us/archive/blogs/dsnotes/service-failure-with-cryptographicexception-keyset-does-not-exist