Configuration

Citrix Ready workspace hub

The Citrix Ready workspace hub combines digital and physical environments to deliver apps and data within a secure smart space. The complete system connects devices (or things), like mobile apps and sensors, to create an intelligent and responsive environment.

Citrix Ready workspace hub is built on the Raspberry Pi 3 platform. The device running Citrix Workspace app connects to the Citrix Ready workspace hub and casts the apps or desktops on a larger display.

Configure Citrix Ready workspace hub

Citrix Ready workspace hub is enabled on Citrix Workspace app when all the following system requirements are met:

  • Citrix Workspace app 1809 for Android or later installed
  • Bluetooth enabled
  • Mobile device and workspace hub using the same Wi-Fi network

To turn on Citrix Ready workspace hub features, tap Settings and Workspace Hub to enable the feature on your device.

Known Limitations

  • Web Interface does not support session roaming. Therefore, do not select the Add account type as Web Interface check box.

For more information about Citrix Ready workspace hub in Citrix Workspace app for Android, see Configure Citrix Ready workspace hub.

For information about Citrix Ready workspace hub, see Citrix Ready workspace hub documentation.

Providing access to virtual apps and desktops

Citrix Workspace app requires configuration of either Web Interface or StoreFront to deliver apps, desktops and files from your Citrix Virtual Apps and Desktops deployment.

Web Interface

There are two types of Web Interface sites: XenApp Services (formerly Program Neighborhood Services) sites and XenApp websites. Web Interface sites enable user devices to connect to the server.

StoreFront

You can configure StoreFront to provide authentication and resource delivery services for Citrix Workspace app, enabling you to create centralized enterprise stores to deliver desktops and applications through Citrix Virtual Apps and Desktops, and Worx Mobile Apps and mobile apps you have prepared for your organization through XenMobile.

Authentication between Citrix Workspace app and a Web Interface site or a StoreFront store can be handled using a variety of solutions:

  • Users inside your firewall can connect directly to Web Interface or StoreFront.
  • Users outside your firewall can connect to StoreFront or the Web Interface through Citrix Gateway.
  • Users outside your firewall can connect through Citrix Gateway to StoreFront.

Connecting through Citrix Gateway

Citrix Gateway 11 and later are supported by Citrix Workspace app for Android for access to:

  • Web Interface 5.4 XenApp Services Sites and XenApp Web Sites
  • StoreFront 2.6, 3.0, 3.5, 3.6, 3.7, 3.8, 3.9 and 3.11 stores

You can create multiple session policies on the same virtual server depending on the type of connection (such as ICA, CVPN, or VPN) and type of Workspace deployment (Workspace for Web or locally installed Citrix Workspace app). All of the policies can be achieved from a single virtual server.

When users create accounts on Citrix Workspace app, they should enter the account credentials, such as their email address or the matching FQDN of your Citrix Gateway server. For example, if the connection fails when using the default path, users should enter the full path to the Citrix Gateway server.

To connect to XenMobile

To enable remote users to connect through Citrix Gateway to your XenMobile deployment, you can configure Citrix Gateway to work with AppController or StoreFront (both components of XenMobile). The method for enabling access depends on the edition of XenMobile in your deployment:

Enabling access to XenMobile 9:

Client Certificate Authentication

Enabling access to XenMobile 10:

Citrix Gateway and XenMobile

If you deploy XenMobile in your network, allow connections from remote users to AppController by integrating XenMobile and AppController. This deployment allows users to connect to AppController to obtain their web, Software as a Service (SaaS), and mobile apps, and access documents from ShareFile. Users connect through either Citrix Workspace app or the Citrix Gateway Plug-in.

If you deploy XenMobile in your network, allow connections from internal or remote users to StoreFront through Citrix Gateway by integrating Citrix Gateway and StoreFront. This deployment allows users to connect to StoreFront to access published applications virtual desktops from Citrix Virtual Apps and Desktops. Users connect through Citrix Workspace app.

To deploy windows and custom apps to your users, you must wrap the apps by using the MDX Toolkit. You can find more information here:

MDX Toolkit

Connecting to StoreFront

Citrix Workspace app for Android supports launching sessions from Workspace for Web, provided that the web browser works with Workspace for Web. If launches do not occur, configure your account through Citrix Workspace app for Android directly.

Tip

When Workspace for Web is used from a browser, sessions are not launched automatically when downloading an .ICA file. The .ICA file must be opened manually shortly after its downloaded for the session to be launched.

With StoreFront, the stores you create consist of services that provide authentication and resource delivery infrastructure for Citrix Workspace app. Create stores that enumerate and aggregate desktops and applications from XenDesktop sites and XenApp, making these resources available to users.

For administrators who need more control, Citrix provides a template you can use to create a download site for Citrix Workspace app for Android.

Configure stores for StoreFront just as you would Citrix Virtual Apps and Desktops . No special configuration is needed for mobile devices. For mobile devices, use either of these methods:

  • Provisioning files - You can provide users with provisioning files (.cr) containing connection details for their stores. After installation, users open the file on the device to configure Citrix Workspace app automatically. By default, Workspace for Web sites offer users a provisioning file for the single store for which the site is configured. Alternatively, you can use the Citrix StoreFront management console to generate provisioning files for single or multiple stores that you can manually distribute to your users.

  • Manual configuration - You can directly inform users of the Citrix Gateway or store URLs needed to access their desktops and applications. For connections through Citrix Gateway, users also need to know the product edition and required authentication method. After installation, users enter these details into Citrix Workspace app, which attempts to verify the connection and, if successful, prompts users to log on.

Configuring Citrix Workspace app

When creating a new account, in the Address field, enter the matching URL of your store, such as storefront.organization.com.

Continue by completing the remaining fields and select the Citrix Gateway authentication method, such as enabling the security token, selecting the type of authentication, and saving the settings.

When adding an account using an automatic configuration you can enter the FQDN of a StoreFront server or Citrix Gateway, or you can alternatively use an email address to create a new account. You are then prompted to enter the user credentials before logging on.

For more information about configuring access to StoreFront through Citrix Gateway, see:

Configure and manage stores

Integrating StoreFront with Citrix Gateway

Content Collaboration Service integration in Citrix Workspace app

This release introduces integration of Citrix Content Collaboration Service with Citrix Workspace app. Citrix Content Collaboration enables you to easily and securely exchange documents, send large documents by email, securely handle document transfers to third parties, and access a collaboration space. Citrix Content Collaboration provides many ways to work, including a web-based interface, mobile clients, desktop apps, and integration with Microsoft Outlook and Gmail.

You can access Citrix Content Collaboration functionality from the Citrix Workspace app using the Files tab displayed within Citrix Workspace app. You can view the Files tab only if Content Collaboration Service is enabled in the Workspace configuration in the Citrix Cloud console.

Note:

Citrix Content Collaboration integration in Citrix Workspace app is not supported on Windows Server 2012 and Windows Server 2016 due to a security option set in the operating system.

Limitations:

  • Resetting Citrix Workspace app does not cause Citrix Content Collaboration to log off.
  • Switching stores in Citrix Workspace app does not cause Citrix Content Collaboration to log off.

The following image displays example contents of the Files tab of the new Citrix Workspace app:

alt_text

Connecting to Web Interface

Citrix Workspace app can launch applications through your Web Interface site. Configure the Web Interface site just as you would for other Citrix Virtual Apps and Desktops apps and desktops. No special configuration is needed for mobile devices.

Citrix Workspace app supports Web Interface version 5.4 only. In addition, users can launch applications from Web Interface 5.4 using the Firefox mobile browser.

To launch applications on the Android device:

From the device, users log into the Web Interface site using their normal logon and password.

For more information about configuring Web Interface sites see:

Configuring Web Interface.

Keyboard layout synchronization

To enable keyboard layout synchronization, go to Settings inside Citrix Workspace app and check Enable client IME.

Notes:

  • The VDA must be version 7.16 or later.
  • Administrators must enable the Enhanced support for Asian languages feature on the VDA. By default, the feature is enabled. However, on Windows Server 2016 VDA, you must add a new key called DisableKeyboardSync and set the value to 0 in HKEY_LOCAL_MACHINE\SOFTWARE\Citrix\ICA\IcaIme to enable the feature.
  • Administrators must enable the Unicode keyboard layout mapping feature on the VDA. By default, the feature is disabled. To enable it, create the CtxKlMap key under HKEY_LOCAL_MACHINE\SOFTWARE\Citrix and set DWORD value EnableKlMap = 1 under HKEY_LOCAL_MACHINE\SOFTWARE\Citrix\CtxKlMap.

Limitations:

  • This feature works only on soft keyboards on the devices, not on external keyboards.
  • Certain mobile devices might not fully support keyboard layout synchronization, such as the Nexus 5x
  • The keyboard layout can only be synced from the client to the server. When changing the server-side keyboard layout, the client keyboard layout cannot be changed.
  • When you change the client keyboard layout to a non-compatible layout, the layout might be synced on the VDA side, but functionality cannot be confirmed.
  • Remote applications that run with elevated privileges (for example, applications you run as an administrator) can’t be synchronized with the client keyboard layout. To work around this issue, manually change the keyboard layout on the VDA or disable UAC.

Configuring USB smart card

Citrix Workspace app provides support for USB smart card readers with StoreFront, Web Interface-based site, or a PNA site. You can use USB smart cards for the following purposes when enabled:

  • Smart card logon - Authenticates users to Citrix Workspace app.
  • Smart card application support - Enables smart card-aware published applications to access local smart card devices.

Citrix Workspace app supports this feature on all Android devices listed by Biometric Associates.

Citrix Workspace app supports the following types of USB smart cards:

  • Personal Identity Verification (PIV) cards
  • Common Access Cards (CAC) cards

USB smart card is supported on Android operating system 6.0(Marshmallow) to Version 7.12(Nougat). Android operating system Version 8.0(Oreo) and 9.0(Pie) are not supported. This is a third-party limitation.

You can also enable USB smart card authentication from Settings > Manage Accounts.

Configuring USB smart card support

Prerequisite:

  • Download and install the Android PC/SC-Lite service from the Google Play Store.
  1. Connect the USB smart card reader to the mobile device. For information about connecting smart card readers, refer to the smart card reader specifications provided by the manufacturer.
  2. Add a smart card enabled StoreFront account.
  3. On the Citrix Workspace app logon page, tap Add Account. Tap the Use Smartcard option.
  4. To edit an existing account to use the USB smart card authentication, tap Accounts > Edit and tap the Use Smartcard option.

Installing Citrix Workspace app on an SD card

Citrix Workspace app for Android is optimized for local installation on user devices. However, if devices have insufficient storage, users can install Citrix Workspace app for Android on an external SD card and mount it on the device to launch published apps on their mobile devices. This support is provided by default and no additional configuration is required.

To launch an app using the SD card, select the app from the list of Citrix Workspace app on the user device, and then select Move to SD card.

If users opt to install Citrix Workspace app for Android on an external SD card to launch apps, the following issues exist:

  • Mounting a USB storage device while the SD card is mounted on the mobile device causes the SD card to become unavailable, and if apps were running, they stop running when the USB device is mounted.
  • Some AppWidgets (such as the home screen widgets) are not available when an app is running from the SD card. After unmounting the SD card, users must restart the AppWidgets.

If users install Citrix Workspace app for Android locally on their user devices, they can move Citrix Workspace app for Android to the SD card when needed.

Accessing files using file type association

As a prerequisite for this feature to work, go to the Citrix Workspace app settings and set the Use device storage option to Full Access.

Citrix Workspace app reads and applies the settings configured by administrators in Citrix Studio. To apply FTA in a session, ensure that users connect to the Store server where the FTA is configured.

On the user device, select the file you want to launch File Explorer and click Open. The Android operating system provides an option to launch the file using Citrix Workspace app (applying the FTA configured by the administrator) or a different application. Depending on your earlier selection, a default application might or might not be set. You can change the default application using the Change default option.

Note:

This feature is available only on StoreFront and requires Citrix Virtual Apps and Desktops Version 7 or later.

Limitation

  • You can access only MIME file formats supported by Microsoft Office, Adobe Acrobat reader and Notepad applications using the file type association feature.

Known issues and limitations

  1. Smart card authentication might be slower than password authentication. For example, after disconnecting from a session, wait for approximately 30 seconds before attempting to reconnect. Reconnecting to a disconnected session too quickly might cause Citrix Workspace app to turn unresponsive.
  2. Smart card authentication is not supported on XenApp Services Sites.
  3. Some users might have a global PIN number for smart cards; however, when users log on using a smart card account, they must enter the PIV PIN and not the global smart card PIN. This is a third-party limitation.
  4. Citrix recommends that you exit and restart the Citrix Workspace app session after you log off from the smart card account.
  5. Multiple USB smart cards are not supported.