-
-
Machine identities
-
-
Migrate workloads between resource locations using Image Portability Service
-
-
-
This content has been machine translated dynamically.
Dieser Inhalt ist eine maschinelle Übersetzung, die dynamisch erstellt wurde. (Haftungsausschluss)
Cet article a été traduit automatiquement de manière dynamique. (Clause de non responsabilité)
Este artículo lo ha traducido una máquina de forma dinámica. (Aviso legal)
此内容已经过机器动态翻译。 放弃
このコンテンツは動的に機械翻訳されています。免責事項
이 콘텐츠는 동적으로 기계 번역되었습니다. 책임 부인
Este texto foi traduzido automaticamente. (Aviso legal)
Questo contenuto è stato tradotto dinamicamente con traduzione automatica.(Esclusione di responsabilità))
This article has been machine translated.
Dieser Artikel wurde maschinell übersetzt. (Haftungsausschluss)
Ce article a été traduit automatiquement. (Clause de non responsabilité)
Este artículo ha sido traducido automáticamente. (Aviso legal)
この記事は機械翻訳されています.免責事項
이 기사는 기계 번역되었습니다.책임 부인
Este artigo foi traduzido automaticamente.(Aviso legal)
这篇文章已经过机器翻译.放弃
Questo articolo è stato tradotto automaticamente.(Esclusione di responsabilità))
Translation failed!
Machine identities
Each machine must have a unique machine identity, also known as computer account. Machine identities can be created and managed in the machines locally or in a directory, such as on-premises Active Directory (AD) or Azure AD. Citrix supports hosting virtual applications and desktops on machines that are Active Directory joined, Azure Active Directory joined, Hybrid Azure Active Directory joined, or non-domain joined.
Machine identity types
The following machine identity types are supported.
| Machine identity type | Description |
|---|---|
| AD joined | Identities are created and managed in on-premises Active Directory. Provisioned machines are joined to on-premises Active Directory using the assigned machine identities. |
| Entra joined | Identities are created and managed in Entra ID. Provisioned machines are joined to Entra ID using the assigned machine identities. Importing VMs to Citrix DaaS is not supported. |
| Entra hybrid joined | Identities are created in on-premises Active Directory and are synced with Entra ID through Microsoft Entra Connect. Provisioned machines are joined to on-premises Active Directory and Entra ID. The machines are then Entra hybrid joined. For importing an Entra hybrid joined VM, the VM is treated as an Active Directory joined VM by Citrix DaaS. |
| Non-domain-joined | Identities are created and managed in the machines locally. Importing VMs to Citrix DaaS is not supported. |
Supported Configurations
The following are details of the supported configurations for each scenario.
Supported infrastructure
| Machine identity | Citrix DaaS | Citrix Workspace | Citrix StoreFront | Citrix Gateway Service | Citrix Gateway |
|---|---|---|---|---|---|
| AD joined | Yes | Yes | Yes | Yes | Yes |
| Entra joined | Yes | Yes | No | Yes | No |
| Entra hybrid joined | Yes | Yes | Yes | Yes | Yes |
| Non-domain-joined | Yes | Yes | Yes | Yes | Yes |
NOTE
Neither Local Host Cache nor Service Continuity are available for Non-domain joined session hosts when using Storefront.
Supported workspace authentication identity providers
| Machine identity | Azure Active Directory | Active Directory | Active Directory and Token | Okta | SAML | Citrix Gateway | Adaptive Authentication |
|---|---|---|---|---|---|---|---|
| AD joined | Yes | Yes | Yes | Yes | Yes | Yes | Yes |
| Entra joined | Yes | No | No | No | Yes | No | No |
| Entra hybrid joined | Yes | Yes | Yes | Yes | Yes | Yes | Yes |
| Non-domain-joined | Yes | Yes | Yes | Yes | Yes | Yes | Yes |
NOTE
If using an identity provider other than Active Directory or Active Directory + Token with AD joined or Entra hybrid joined deployments, you need Citrix Federated Authentication Service (FAS) to achieve single sign-on (SSO) to the virtual app or desktop session. Refer to the FAS documentation for details.
If you plan to use SAML as your identity provider and require access to Entra joined session hosts, see the Citrix Cloud documentation for information on configuring SAML with Entra ID identities.
Share
Share
In this article
This Preview product documentation is Citrix Confidential.
You agree to hold this documentation confidential pursuant to the terms of your Citrix Beta/Tech Preview Agreement.
The development, release and timing of any features or functionality described in the Preview documentation remains at our sole discretion and are subject to change without notice or consultation.
The documentation is for informational purposes only and is not a commitment, promise or legal obligation to deliver any material, code or functionality and should not be relied upon in making Citrix product purchase decisions.
If you do not agree, select I DO NOT AGREE to exit.