System and Connectivity Requirements

March 31, 2020

Contributed by: C J

Citrix Cloud provides administrative functions (through a web browser) and operational requests (from other installed components) that connect to resources within your deployment. This article describes the system requirements, required contactable Internet addresses, and considerations for establishing connectivity between your resources and Citrix Cloud.

System requirements

Citrix Cloud requires the following minimum configuration:

An Active Directory domain
Two physical or virtual machines, joined to your domain, for the Citrix Cloud Connector. For more information, see Citrix Cloud Connector Technical Details.
Physical or virtual machines, joined to your domain, for hosting workloads and other components such as StoreFront. For more information about system requirements for specific services, refer to the Citrix documentation for each service.

Supported web browsers

Latest version of Google Chrome
Latest version of Mozilla Firefox
Latest version of Microsoft Edge
Microsoft Internet Explorer 11
Latest version of Apple Safari

Internet connectivity requirements

Connecting to the Internet from your data centers requires opening port 443 to outbound connections. However, to operate within environments containing an Internet proxy server or firewall restrictions, further configuration might be needed. For more information, see Cloud Connector Proxy and Firewall Configuration.

The addresses in this section must be contactable to properly operate and consume the Citrix Cloud services. As a best practice, use Group Policy to configure and manage these addresses. Also, configure only the addresses that are applicable to the services that you and your end-users are consuming.

If you are using Citrix Cloud with Citrix License Server to register your on-premises products, see On-premises product registration in this article for additional required contactable addresses.

Citrix Workspace

https://*.cloud.com
https://*.citrixdata.com

To ensure subscribers can successfully access their content in Citrix Files and Content Collaboration through Workspace, Citrix recommends whitelisting the domains listed in CTX208318.

Content Collaboration

Citrix resource location / Cloud Connector:

https://*.sharefile.com
Additional requirements: ShareFile Firewall Configuration and IP Address (CTX208318)

Administration console:

https://*.citrixworkspacesapi.net
https://*.cloud.com
Additional requirements: ShareFile Firewall Configuration and IP Address (CTX208318)

Secure Browser

Citrix resource location / Cloud Connector:

https://*.citrixworkspacesapi.net
https://*.cloud.com
https://*.servicebus.windows.net

Administration console:

https://*.cloud.com
https://*.citrixworkspacesapi.net
https://browser-release-a.azureedge.net
https://browser-release-b.azureedge.net

Virtual Apps and Desktops service

Citrix resource location / Cloud Connector:

https://*.citrixworkspacesapi.net
https://*.citrixnetworkapi.net
https://*.cloud.com
https://*.blob.core.windows.net
https://*.nssvc.net
https://*.servicebus.windows.net
https://*.xendesktop.net
https://*.cloudapp.net
https://*.prod-ap-s-xdui-cdn.azureedge.net/ - If accessing the service from the Asia Pacific South region
https://*.prodcp2-xdui-cdn.azureedge.net/ - If accessing the service from the US region
https://*.prod-eu-xdui-cdn.azureedge.net/ - If accessing the service from the EU region

Administration console:

https://*.citrixworkspacesapi.net
https://*.citrixnetworkapi.net
https://*.cloud.com
https://*.blob.core.windows.net
https://*.nssvc.net
https://*.xendesktop.net
https://*.prod-ap-s-xdui-cdn.azureedge.net/ - If accessing the service from the Asia Pacific South region
https://*.prodcp2-xdui-cdn.azureedge.net/ - If accessing the service from the US region
https://*.prod-eu-xdui-cdn.azureedge.net/ - If accessing the service from the EU region

Managed Desktops

The addresses in this section are required only for customer-managed Cloud Connectors deployed in a customer-managed Azure subscription.

Citrix resource location / Cloud Connector:

https://*.citrixworkspacesapi.net
https://*.citrixnetworkapi.net/
https://*.cloud.com
https://*.blob.core.windows.net
https://*.nssvc.net
https://*.servicebus.windows.net
https://*.xendesktop.net
https://*.cloudapp.net
https://*.prod-ap-s-xdui-cdn.azureedge.net/ - If accessing the service from the Asia Pacific South region
https://*.prodcp2-xdui-cdn.azureedge.net/ - If accessing the service from the US region
https://*.prod-eu-xdui-cdn.azureedge.net/ - If accessing the service from the EU region

Administration console:

https://*.citrixworkspacesapi.net
https://*.citrixnetworkapi.net/
https://*.cloud.com
https://*.blob.core.windows.net
https://*.xendesktop.net
https://*.prod-ap-s-xdui-cdn.azureedge.net/ - If accessing the service from the Asia Pacific South region
https://*.prodcp2-xdui-cdn.azureedge.net/ - If accessing the service from the US region
https://*.prod-eu-xdui-cdn.azureedge.net/ - If accessing the service from the EU region

Managed Desktops

The addresses in this section are required only for customer-managed Cloud Connectors deployed in a customer-managed Azure subscription.

Citrix resource location / Cloud Connector:

https://*.citrixworkspacesapi.net
https://*.cloud.com
https://*.blob.core.windows.net
https://*.nssvc.net
https://*.servicebus.windows.net
https://*.xendesktop.net
https://*.cloudapp.net
https://*.prod-ap-s-xdui-cdn.azureedge.net/ - If accessing the service from the Asia Pacific South region
https://*.prodcp2-xdui-cdn.azureedge.net/ - If accessing the service from the US region
https://*.prod-eu-xdui-cdn.azureedge.net/ - If accessing the service from the EU region

Administration console:

https://*.citrixworkspacesapi.net
https://*.cloud.com
https://*.blob.core.windows.net
https://*.xendesktop.net
https://*.prod-ap-s-xdui-cdn.azureedge.net/ - If accessing the service from the Asia Pacific South region
https://*.prodcp2-xdui-cdn.azureedge.net/ - If accessing the service from the US region
https://*.prod-eu-xdui-cdn.azureedge.net/ - If accessing the service from the EU region

Endpoint Management

Citrix resource location / Cloud Connector:

https://*.citrixworkspacesapi.net
https://*.cloud.com
https://*.blob.core.windows.net
https://*.servicebus.windows.net
https://*.cloudapp.net
Additional requirements: https://docs.citrix.com/en-us/citrix-endpoint-management/endpoint-management.html

Administration console:

https://*.citrix.com
https://*.citrixworkspacesapi.net
https://*.cloud.com
https://*.blob.core.windows.net
Additional requirements: https://docs.citrix.com/en-us/citrix-endpoint-management/endpoint-management.html

Citrix Gateway Service

https://*.nssvc.net

Citrix Access Control

https://*.netscalergateway.net
https://*.nssvc.net

SD-WAN Orchestrator

For complete Internet connectivity requirements, see Prerequisites for Orchestrator usage.

Workspace Environment Management service

https://*.wem.cloud.com

Citrix Cloud management console

The Citrix Cloud management console is a web-based console that you can access after signing in at https://citrix.cloud.com. The webpages that make up the console might require other resources on the Internet, either when signing in or at a later point when carrying out specific operations.

Proxy configuration

If you’re connecting through a proxy server, the management console operates using the same configuration applied to your web browser. The console operates within the user context, so any configuration of proxy servers that require user authentication should work as expected.

Firewall configuration

For the management console to operate, you must have port 443 open for outbound connections. You can test general connectivity by navigating within the console.

On-premises product registration

If you are using Citrix Cloud with Citrix License Server to register your on-premises products, ensure the following addresses are contactable:

https://trust.citrixnetworkapi.net (for retrieving a code)
https://trust.citrixworkspacesapi.net/ (for confirming the license server is registered)
https://cis.cloud.com (for data upload)

If you are using a proxy server with Citrix License Server, ensure the proxy server is configured as described in Configure a proxy server for Citrix Licensing Manager, Customer Experience Improvement Program (CEIP), and Call Home.

Connectors

Citrix Cloud Connector

The Citrix Cloud Connector is a software package that deploys a set of services that run on Microsoft Windows servers. The machine hosting the Cloud Connector resides within the network where the resources you use with Citrix Cloud reside. The Cloud Connector connects to Citrix Cloud, allowing it to operate and manage your resources as needed.

For requirements for installing the Cloud Connector, see System requirements. To operate, the Cloud Connector requires outbound connectivity on port 443. After installation, the Cloud Connector might have additional access requirements depending on the Citrix Cloud service with which it is being used.

Important:

Enabling SSL decryption on certain proxies might prevent the Cloud Connector from connecting successfully to Citrix Cloud. For more information about resolving this issue, see CTX221535.

•Cloud Connector binaries and endpoints that the Cloud Connector contacts are protected by X.509 certificates that are verified when the software is installed. To install the software successfully, the machines hosting the Cloud Connector must trust these certificates. For more information about these certificates and configuring this trust, see Certificate validation requirements.

Citrix Connector Appliance for Cloud Services

The Connector Appliance is an appliance that you can deploy in your hypervisor. The hypervisor hosting the Connector Appliance resides within the network where the resources you use with Citrix Cloud reside. The Connector Appliance connects to Citrix Cloud, allowing it to operate and manage your resources as needed.

For requirements for installing the Connector Appliance, see System requirements.

To operate, the Connector Appliance requires outbound connectivity on port 443. However, to operate within environments containing an Internet proxy server or firewall restrictions, further configuration might be needed.

To properly operate and consume the Citrix Cloud services, the following addresses must be contactable:

https://*.cloud.com
https://*.citrixworkspacesapi.net
https://*.citrixnetworkapi.net
https://*.azurecr.io
https://*.servicebus.windows.net

The official version of this content is in English. Some of the Citrix documentation content is machine translated for your convenience only. Citrix has no control over machine-translated content, which may contain errors, inaccuracies or unsuitable language. No warranty of any kind, either expressed or implied, is made as to the accuracy, reliability, suitability, or correctness of any translations made from the English original into any other language, or that your Citrix product or service conforms to any machine translated content, and any warranty provided under the applicable end user license agreement or terms of service, or any other agreement with Citrix, that the product or service conforms with any documentation shall not apply to the extent that such documentation has been machine translated. Citrix will not be held responsible for any damage or issues that may arise from using machine-translated content.

System and Connectivity Requirements

March 31, 2020

Contributed by: C J

In this article

System requirements
Supported web browsers
Internet connectivity requirements
Citrix Cloud management console
Connectors

Edit this article