Citrix Receiver for Android 3.11 supports Android 4.0 (Ice Cream Sandwich), 4.1/4.2/4.3 (Jelly Bean), 4.4 (KitKat), 5.0/5.1 (Lollipop), 6.0 (Marshmallow), and 7.0 (Nougat).
For best results, update Android devices to the latest Android software.
Citrix Receiver for Android supports launching sessions from Receiver for Web, provided that the web browser works with Receiver for Web. If launches do not occur, please configure your account through Citrix Receiver for Android directly.
Refer to the Connectivity section for information regarding secure connections to your Citrix environment.
- StoreFront 3.8 (recommended), 3.7, 3.6, 3.5, 3.0 and 2.6
Provides direct access to StoreFront stores. Receiver also supports prior versions of StoreFront.
- StoreFront configured with a Receiver for Web site
Provides access to StoreFront stores from a web browser. For the limitations of this deployment, see the StoreFront documentation.
Web Interface (not supported for XenDesktop 7 and later deployments):
- Web Interface 5.4 with Web Interface sites
- Web Interface 5.4 with XenApp Services sites
Web Interface on NetScaler:
You must enable the rewrite policies provided by NetScaler.
XenApp and XenDesktop (any of the following products):
- XenApp 7.x
- XenApp 6.5 for Windows Server 2008 R2
- XenApp 6 for Windows Server 2008 R2
- XenApp 5 for Windows Server 2008
- Citrix Presentation Server 4.5
- XenDesktop 7.x
- XenDesktop 7
- XenDesktop 5, 5.5, and 5.6
Citrix Receiver for Android supports HTTP, HTTPS, and ICA-over-TLS connections to a XenApp server farm through any one of the following configurations.
For LAN connections:
- StoreFront 2.6, 3, 3.5, 3.6, 3.7 or 3.8 (recommended)
- Web Interface 5.4
- XenApp Services (formerly Program Neighborhood Agent) site.
For secure remote connections (any of the following products):
- Citrix NetScaler Gateway 10 and 11 (including VPX, MPX and SDX versions)
- XenMobile is supported only with versions 9 and 10.
When securing remote connections using TLS, the mobile device verifies the authenticity of the remote gateway's TLS certificate against a local store of trusted root certificate authorities. The device automatically recognizes commercially issued certificates (such as VeriSign and Thawte) provided the root certificate for the certificate authority exists in the local keystore.
If a private certificate is installed on the remote gateway, the root certificate for the organization's certificate authority must be installed on the mobile device in order to successfully access Citrix resources using Receiver.
Wildcard certificates are used in place of individual server certificates for any server within the same domain. Citrix Receiver for Android supports wildcard certificates.
If your certificate chain includes an intermediate certificate, the intermediate certificate must be appended to the Access Gateway server certificate. Refer to the Knowledge Center article that matches your edition of the Access Gateway:
CTX114146: How to Install an Intermediate Certificate on NetScaler Gateway
In addition to the configuration topics in this section of eDocs, see also:
CTX124937: How to Configure NetScaler Gateway for Use with Citrix Receiver for Mobile Devices
Citrix Receiver for Android supports authentication through NetScaler Gateway using the following methods, depending on your edition:
- No authentication (Standard and Enterprise versions only)
- Domain authentication
- RSA SecurID, including software tokens for Wi-Fi and non-Wi-Fi devices
- Domain authentication paired with RSA SecurID
- SMS Passcode (OTP) authentication
- Smartcard authentication*
Citrix Receiver for Android now supports the following products and configurations.
Supported smartcard readers:
- BaiMobile 3000MP Bluetooth Smart Card Reader
- PIV cards
- Common Access Cards
- Smartcard authentication to NetScaler Gateway with StoreFront 2 or 3 and XenDesktop 5.6 and above or XenApp 6.5 and above
- Smartcard authentication to NetScaler Gateway with Web Interface 5.4.2 and XenDesktop 5.6 and above or XenApp 6.5 or above