Horizon Client authentication failure

Hi Bluzdoggy, I would open a support case, as they will be able to review log files to determine at which point authentication is failing and more quickly get your environment working.

With that said, do you see the Access policy completing successfully for both clients or only HTML? There is an option in the iApp that might help a little during certificate selection, I point this out as I noted you are not passing certificate authentication when using the horizon client. This could mean you are not sending a certificate at all, or perhaps are not sending one that matches your allowed CA issued certs. Modify the question "Which CA certificate bundle do you want to use for your advertised certificate authorities?" to none. Doing so will make it so the client is able to view all client certificates rather then just certificates issued by the CA root certificate selected. Of course you will need to select a valid certificate (one that has been issued by a CA selected in question "Which CA certificate bundle do you want to use for your trusted certificate authorities?", and is valid).

You could also be hitting a time out issue regarding client side ssl handshake timeout, as the default is set to 10 seconds. This means you have to enter smartcard pin and sent client certificate within 10 seconds of making your initial connection. The iApp will set this value on your client ssl profile to 60 seconds but I mention it in case you selected a pre-configured ssl client profile or for some reason are taking longer than 60 seconds to send certificate.