View PDF
Internet Connectivity Requirements
Citrix Cloud provides administrative functions (through a web browser) and operational requests (from other installed components) that connect to resources within a customer’s deployment. This document defines the requirements and considerations for establishing connectivity between the customer’s resources and Citrix Cloud.
Overview
Connecting to the Internet from your data centers requires opening port 443 to outbound connections. However, to operate within environments containing an Internet proxy server or firewall restrictions, further configuration might be needed. For more information, see Cloud Connector Proxy and Firewall Configuration.
Required addresses
The following addresses need to be contactable to properly operate and consume the Citrix Cloud services.
Citrix Workspace
https://*.cloud.comhttps://*.citrixdata.com
For Content Collaboration and Citrix Files and Workspace, Citrix recommends whitelisting the domains listed in CTX208318.
Content Collaboration
Citrix resource location / Cloud Connector:
https://*.sharefile.com- Additional requirements: ShareFile Firewall Configuration and IP Address (CTX208318)
Administration console:
https://*.citrixworkspacesapi.nethttps://*.cloud.com- Additional requirements: ShareFile Firewall Configuration and IP Address (CTX208318)
Secure Browser
Citrix resource location / Cloud Connector:
https://*.citrixworkspacesapi.nethttps://*.cloud.comhttps://*.servicebus.windows.net
Administration console:
https://*.cloud.comhttps://*.citrixworkspacesapi.nethttps://browser-release-a.azureedge.nethttps://browser-release-b.azureedge.net
Virtual Apps and Desktops service
Citrix resource location / Cloud Connector:
https://*.citrixworkspacesapi.nethttps://*.cloud.comhttps://*.blob.core.windows.net-
https://*.nssvc.net- If Citrix Gateway service is enabled https://*.servicebus.windows.nethttps://*.xendesktop.nethttps://*.cloudapp.net
Administration console:
https://*.citrixworkspacesapi.nethttps://*.cloud.comhttps://*.blob.core.windows.nethttps://*.xendesktop.net
Endpoint Management
Citrix resource location / Cloud Connector:
https://*.citrixworkspacesapi.nethttps://*.cloud.comhttps://*.blob.core.windows.nethttps://*.servicebus.windows.nethttps://*.cloudapp.net- Additional requirements: https://docs.citrix.com/en-us/citrix-endpoint-management/endpoint-management.html
Administration console:
https://*.citrix.comhttps://*.citrixworkspacesapi.nethttps://*.cloud.comhttps://*.blob.core.windows.net- Additional requirements: https://docs.citrix.com/en-us/citrix-endpoint-management/endpoint-management.html
Gateway
https://*.netscalergateway.net
Workspace Environment Management
https://*.wem.cloud.com
Citrix Cloud management console
The Citrix Cloud management console is a web-based console that you can access after signing in at https://citrix.cloud.com. The webpages that make up the console might require other resources on the Internet, either when signing in or at a later point when carrying out specific operations.
Proxy configuration
If you’re connecting through a proxy server, the management console operates using the same configuration applied to your web browser. The console operates within the user context, so any configuration of proxy servers that require user authentication should work as expected.
Firewall configuration
For the management console to operate, you must have port 443 open for outbound connections. You can test general connectivity by navigating within the console.
On-premises product registration
If you are using Citrix Cloud with Citrix License Server to register your on-premises products, ensure the following addresses are contactable:
-
https://trust.citrixnetworkapi.net(for retrieving a code) -
https://trust.citrixworkspacesapi.net/(for confirming the license server is registered) -
https://cis.cloud.com(for data upload)
If you are using a proxy server with Citrix License Server, ensure the proxy server is configured as described in Configure a proxy server for Citrix Licensing Manager, Customer Experience Improvement Program (CEIP), and Call Home.
Citrix Cloud Connector
The Citrix Cloud Connector is a software package that deploys a set of services that run on Microsoft Windows servers. The machine hosting the Cloud Connector resides within the network where the resources you use with Citrix Cloud reside. The Cloud Connector connects to Citrix Cloud, allowing it to operate and manage your resources as needed.
For requirements for installing the Cloud Connector, see System requirements. To operate, the Cloud Connector requires outbound connectivity on port 443. After installation, the Cloud Connector might have additional access requirements depending on the Citrix Cloud service with which it is being used.
Important:
- Enabling SSL decryption on certain proxies might prevent the Cloud Connector from connecting successfully to Citrix Cloud. For more information about resolving this issue, see CTX221535.
- The Cloud Connector software is signed with a code signing certificate which is validated when the software is installed. To install the software successfully, the machines hosting the Cloud Connector must trust the root and intermediate certificates. For more information about configuring this trust on Cloud Connector machines, see Certificate validation requirements.