When connecting to Citrix via a web browser a SSL handshake is initiated when your browser issues a secure connection request to a Web server. The web server sends a public key to your computer, and your computer checks the certificate against a known list of certificate authorities. After accepting the certificate, your computer generates a key, and then encrypts it using the server’s public key. If the SSL handshake fails, the Citrix Receiver gives the following error: unable to connect to the server , SSL error 47 or SSL Error 47 / sslv3 alert handshake failure. This is commonly also found if you have recently upgraded your Citrix Workspace App to release 1904.
Update your Citrix Receiver
The issue arises due to to a compatibility issue with Citrix Workspace versions which are above build 1903. To fix this please uninstall the Citrix Workspace application and install the Citrix Receiver 4.9.8000 for Windows or above.
The latest version as of the time of this post is version 4.12. https://www.citrix.com/en-au/downloads/citrix-receiver/windows/receiver-for-windows-latest.html
Reason – Workspace app 1904 reduced the ciphers that it supports – https://support.citrix.com/article/CTX250104
Change the Date on Your Computer
The SSL handshake error can be resolved simply by changing the date and time on your computer to three years in the future and then back again.
- Open your Windows Start screen, and then click on the current date and time.
- Click “Settings | Set the time and date | Internet Time | Change Settings.”
- Move the date three years into the future by clicking on the right arrow under the “Date” heading. Click “OK” to save your settings. You must select a date this far in the future to cause a date discrepancy between your computer and the SSL certificate used on the Web server. The date discrepancy will cause the SSL handshake to fail.
- Restart your computer.
- Cause the SSL Handshake Error again by accessing your Citrix portal and initiate an SSL session.
- Wait just a few seconds for an error message to appear in your browser, alerting you that the server’s SSL certificate is not yet valid, and because of this the SSL handshake has failed.
- Change the date on your computer back to the correct date tp resolve the issue and avoid future SSL handshake errors.