HDX RealTime Media Engine

The HDX RealTime Media Engine (RTME) is a plug-in to the Citrix Workspace app for Android to support clear, crisp high-definition audio-video calls. You can seamlessly participate in audio-video or audio-only calls to and from HDX RealTime Media Engine users.

HDX RTME integrates Citrix Workspace app on the endpoint device and performs media processing directly on the user device, offloading the server for maximum scalability, minimizing network bandwidth consumption and ensuring optimal audio-video quality.

Citrix HDX RTME plug-in is embedded with the Citrix Workspace app installer.


HDX RTME for Citrix Workspace app for Android is supported only on Chromebooks with Intel Core Processor.

Citrix Workspace app for Android does not support the following HDX RTME features:

  • Camera encoding USB Video Class (UVC) 1.1.
  • Device enumeration and switching from Skype for Business settings. Only default devices are used.
  • G722.1C, RTAudio, and RTVideo codecs.
  • Human interface devices, auto gain control, and Call Admission Control.
  • In Fallback mode, webcam and audio devices are not available because of limitations in Citrix Workspace app for Android.

For more information about HDX RealTime Media Engine, see HDX RealTime Optimization Pack documentation.

Providing access information

You must provide users with the Citrix Workspace app account information to access hosted applications, desktops, and files. You can provide this information by:

  • configuring email-based account discovery
  • providing users with a provisioning file
  • providing users with account information to enter manually

Configure email-based account discovery

You can configure Citrix Workspace app to use email-based account discovery. When configured, users enter their email address rather than a server URL during initial Citrix Workspace app for Android installation and configuration. Citrix Workspace app for Android determines the Citrix Gateway or StoreFront server associated with the email address based on Domain Name System (DNS) Service (SRV) records and then prompts the user to log on to access their hosted applications, desktops, and data.


Email-based account discovery is not supported if Citrix Workspace app is connected to a Web Interface deployment.

Provide users with a provisioning file

You can use StoreFront to create provisioning files containing connection details for accounts. You make these files available to your users to enable them to configure Citrix Workspace app for Android automatically. After installing Citrix Workspace app for Android, users simply open the .cr file on the device to configure Citrix Workspace app for Android. If you configure Workspace for Web sites, users can also obtain Citrix Workspace app for Android provisioning files from those sites.

For more information, see the StoreFront documentation.

Provide users with account information to enter manually

If you are providing users with account details to enter manually, ensure you distribute the following information to enable them to connect to their hosted and desktops successfully:

  • The StoreFront URL or XenApp Services site hosting resources; for example:

  • To access using Citrix Gateway, provide the Citrix Gateway address and required authentication method.

    See the Citrix Gateway documentation for more information.

When a user enters the details for a new account, Citrix Workspace app attempts to verify the connection. If successful, Citrix Workspace app prompts the user to log on to the account.

Providing RSA SecurID authentication for Android devices

If you configure the Citrix Gateway for RSA SecurID authentication, the Citrix Workspace app for Android supports Next Token Mode. With this feature enabled, if a user enters three (by default) incorrect passwords, the Citrix Gateway plug-in prompts the user to wait until the next token is active before logging on. The RSA server can be configured to disable a user’s account if a user logs on too many times with an incorrect password.

For instructions on configuring authentication, see Authentication and Authorization.


RSA SecurID authentication is not supported on Citrix Secure Web Gateway configurations. To use RSA SecurID, use Citrix Gateway.

Installing RSA SecurID Software Tokens

An RSA SecurID Software Authenticator file has an .sdtid file extension. Use the RSA SecurID Software Token Converter to convert the .sdtid file to an XML-format 81-digit numeric string. Obtain the latest software and information from the RSA Web site.

Follow these general steps:

  1. On a computer (not a mobile device), download the converter tool here. Follow the instructions on the web site and in the readme included with the converter tool.
  2. Paste the converted numeric string into an email and send it to user devices.
  3. On the mobile device, make sure that the date and time are correct, which is required for authentication to occur.
  4. On the device, open the email and click the string to start the software token import process.

After the software token is installed on the device, a new option appears in the Settings list to manage the token.


On mobile devices that do not associate the .sdtid file with Citrix Workspace app for Android, change the file extension to .xml and import it.

Save passwords

Using the Citrix Web Interface Management console, you can configure the authentication method to allow users to save their passwords. When you configure the user account, the encrypted password is saved until the first time the user connects.

  • If you enable password saving, Citrix Workspace app stores the password on the device for future logons and does not prompt for passwords when users connect to applications.


    The password is stored only if users enter a password when creating an account. If no password is entered for the account, no password is saved, regardless of the server setting.

  • If you disable password saving (default setting), Citrix Workspace app prompts users to enter passwords every time they connect.


You cannot store the passwod on StoreFront direct connections.

To override saved passwords

If you configure the server to save passwords, users who prefer to require passwords at logon can override password saving:

  • When creating the account, leave the password field blank.
  • When editing an account, delete the password and save the account.