Administrator tasks and considerations

This article discusses the tasks and considerations that are relevant for administrators of Citrix Workspace app for iOS.

Feature flag management

If an issue occurs with Citrix Workspace app in production, we can disable an affected feature dynamically in Citrix Workspace app even after the feature is shipped. To do so, we use feature flags and a third-party service called LaunchDarkly. You do not need to make any configurations to enable traffic to LaunchDarkly, except when you have a firewall or proxy blocking outbound traffic. In that case, you enable traffic to LaunchDarkly via specific URLs or IP addresses, depending on your policy requirements.

You can enable traffic and communication to LaunchDarkly in the following ways:

Enable traffic to the following URLs


List IP addresses in an allow list

If you must list IP addresses in an allow list, for a list of all current IP address ranges, see LaunchDarkly public IP list. You can use this list to ensure that your firewall configurations are updated automatically in keeping with the infrastructure updates. For details about the status of the infrastructure changes, see the LaunchDarkly Status page.

LaunchDarkly system requirements

Ensure that the apps can communicate with the following services if you have split tunneling on the Citrix ADC set to OFF for the following services:

  • LaunchDarkly service.
  • APNs listener service

Save passwords

Using the Citrix Web Interface Management console, you can configure the authentication method to allow users to save their passwords. When you configure the user account, the encrypted password is saved until the first time the user connects. Consider the following:

  • If you enable password saving, Citrix Workspace app for iOS stores the password on the device for future logons and does not prompt for passwords when users connect to applications.


    The password is stored only if users enter a password when creating an account. If no password is entered for the account, no password is saved, regardless of the server setting.

  • If you disable password saving (default setting), Citrix Workspace app for iOS prompts users to enter passwords every time they connect.


For StoreFront direct connections, password saving isn’t available.

To override password saving

If you configure the server to save passwords, users who prefer to require passwords at logon can override password saving:

  • When creating the account, leave the password field blank.
  • When editing an account, delete the password and save the account.

Use the Save Password feature

Citrix Workspace app has a feature that streamlines the connection process by allowing you to save your password, which eliminates the extra step of having to authenticate a session every time you open Citrix Workspace app.


The save password functionality currently supports the PNA protocol. It does not support StoreFront native mode. However, this functionality works when StoreFront enables PNA legacy mode.

Configure StoreFront

To configure StoreFront to enable the save password functionality:

  1. If you are configuring an existing Store, go to step 3.

  2. To configure a new StoreFront deployment, follow the best practices described in Install, set up, upgrade, and uninstall.

  3. Open the Citrix StoreFront management console. Ensure the base URL uses HTTPS and is the same as the common name specified when generating your SSL certificate.

  4. Select the Store that you want to configure.

  5. Click Configure XenApp Service Support.

  6. Enable XenApp Service support, select the Default store (optional), and Click OK.

  7. Navigate to the template configuration file at c:\inetpub\wwwroot\Citrix\<store name>\Views\PnaConfig\.

  8. Make a backup of Config.aspx.

  9. Open the original Config.aspx file.

  10. Edit the line <EnableSavePassword>false</EnableSavePassword> to change the false value to true.

  11. Save the edited Config.aspx file.

  12. On the StoreFront server, run PowerShell with administrative rights.

  13. In the PowerShell console:

    a. cd “c:\Program Files\Citrix\Receiver StoreFront\Scripts”

    b. Type “Set-ExecutionPolicy RemoteSigned”

    c. Type “.\ImportModules.ps1”

    d. Type “Set-DSServiceMonitorFeature –ServiceUrl” https://localhost:443/StorefrontMonitor

  14. If you have a StoreFront group, run the same commands on all the members in the group.

Configure Citrix Gateway to save passwords


This configuration uses Citrix Gateway load balance servers.

To configure Citrix Gateway to support the save password functionality:

  1. Log in to the Citrix Gateway management console.

  2. Follow the Citrix best practices to create a certificate for your load balance virtual servers.

  3. On the configuration tab, navigate to Traffic Management -> Load Balancing -> Servers and click Add.

  4. Enter the server name and IP address of the StoreFront server.

  5. Click Create. If you have a StoreFront group, repeat step 5 for all the servers in the group.

  6. On the configuration tab, navigate to Traffic Management > Load Balancing > Monitor and click Add.

  7. Enter a name for the monitor. Select STOREFRONT as the Type. At the bottom of the page, select Secure (required since the StoreFront server is using HTTPS).

  8. Click the Special Parameters Tab. Enter the StoreFront name configured earlier, and select the Check Backed Services and click Create.

  9. On the Configuration tab navigate to Traffic Management > Load Balancing > Service Groups and click Add.

  10. Enter a name for your Service Group and set the protocol to SSL and click Ok.

  11. On the right-hand of the screen under Advanced Settings, select Settings.

  12. Enable Client IP and enter the following for the Header value: X-Forwarded-For and click OK.

  13. On the right-hand of the screen under Advanced Settings, select Monitors. Click the arrow to add new monitors.

  14. Click the Add button and then select the Select Monitor drop-down menu. A list of monitors (configured on Citrix Gateway) appears.

  15. Click the radio button beside the monitors that you created earlier and click Select, then click Bind.

  16. On the right-hand of the screen (under Advanced Settings), select Members. Click the arrow to add new service group members.

  17. Click the Add button and then select the Select Member drop-down menu.

  18. Select the Server Based radio button. A list of server members (configured on Citrix Gateway) appears. Click the radio button beside the StoreFront servers than you created earlier.

  19. Enter 443 for the port number and specify a unique number for the Hash ID, then click Create, then click Done. If everything has been configured properly, the Effective State should show a green light, indicating that monitoring is functioning properly.

  20. Navigate to Traffic Management -> Load Balancing -> Virtual Servers and click Add. Enter a name for the server and select SSL as the protocol.

  21. Enter the IP address for the StoreFront load-balanced server and click OK.

  22. Select the Load Balancing Virtual Server Service Group binding, click the arrow, and add the Service Group created previously. Click OK twice.

  23. Assign the SSL certificate created for the Load Balance virtual server. Select No Server Certificate.

  24. Select the Load Balance server certificate from the list and click Bind.

  25. Add the domain certificate to the Load Balance Server. Click No CA certificate.

  26. Select the domain certificate and click Bind.

  27. On the right side of the screen, select Persistence.

  28. Change the Persistence to SOURCEIP and set the time-out to 20. Click Save, then click Done.

  29. On your domain DNS server, add the load balance server (if not already created).

  30. Launch Citrix Workspace app for iOS on your iOS device and enter the full XenApp URL.

Content Collaboration Service integration

Citrix Content Collaboration enables you to easily and securely exchange documents, send large documents by email, securely handle document transfers to third parties, and access a collaboration space. Citrix Content Collaboration provides many ways to work, including a web-based interface, mobile clients, desktop apps, and integration with Microsoft Outlook and Gmail.

You can access Citrix Content Collaboration functionality from the Citrix Workspace app using the Files tab displayed within Citrix Workspace app. You can view the Files tab only if Content Collaboration Service is enabled in the Workspace configuration in the Citrix Cloud console.


Citrix Content Collaboration integration in Citrix Workspace app isn’t supported on Windows Server 2012 and Windows Server 2016 due to a security option set in the operating system.

The following image displays example contents of the Files tab of the new Citrix Workspace app:



  • Resetting Citrix Workspace app does not cause Citrix Content Collaboration to log off.
  • Switching stores in Citrix Workspace app does not cause Citrix Content Collaboration to log off.

Customer Experience Improvement Program (CEIP)

Data Collected Description What we Use it for
Configuration and usage data The Citrix Customer Experience Improvement Program (CEIP) gathers configuration and usage data from the Workspace app for iOS and automatically sends the data to Google Firebase. This data helps Citrix improve the quality, reliability, and performance of the Workspace app.

Additional Information

Citrix handles your data in accordance with the terms of your contract with Citrix, and protect it as specified in the Citrix Services Security Exhibit available on the Citrix Trust Center.

Citrix uses Google Firebase to collect certain data from Citrix Workspace app as part of CEIP. Please review how Google handles data collected for Google Firebase.

To turn off sending CEIP data to Citrix and Google Firebase:

  1. Open Citrix Workspace app for iOS.
  2. Tap Home > Settings.
  3. Navigate to the General section.
  4. Disable the Send Usage Statistics option.


No data is collected for the users in European Union (EU), European Economic Area (EEA), Switzerland, and United Kingdom (UK).

The specific CEIP data elements collected by Google Firebase are:

Session information and session launch method Citrix stores and store configuration Auth type and authentication configuration ICA connections
HDX session launch Store app session WebView action open WebView action copy
WebView action share Workspace app review Connection status, connection error, connection center usage External display
Socket status Session duration HDX over UDP Session launch time
Device information Device model info Send usage statistics App language, Workspace app language
Keyboard language Citrix store type Citrix store combination Store protocol type
Store count HDX UDP status RSA token installations  

Citrix Ready workspace hub

The Citrix Ready workspace hub combines digital and physical environments to deliver apps and data within a secure smart space. The complete system connects devices (or things), like mobile apps and sensors, to create an intelligent and responsive environment.

Citrix Ready workspace hub is built on the Raspberry Pi 3 platform. The device running Citrix Workspace app connects to the Citrix Ready workspace hub and casts the apps or desktops on a larger display.

For more information about the Citrix Ready workspace hub, see Citrix Ready workspace hub documentation.

Citrix Ready workspace hub supports a Secure Sockets Layer (SSL) connection between mobile devices and the hub for security purposes. Set a Fully Qualified Domain Name (FQDN) either manually or automatically to uniquely identify each device. For more information, see Security connection in the Citrix Ready workspace hub documentation.

Citrix Ready workspace hub is enabled on Citrix Workspace app when all the following system requirements are met:

  • Citrix Workspace app 1810.1 for iOS or later
  • Bluetooth enabled
  • Mobile device and workspace hub using the same Wi-Fi network


To turn on Citrix Ready workspace hub features, go to Settings and tap Citrix Casting to enable the feature on your device. For more information, see the help documentation for the iOS devices.

Citrix Workspace app integrates a new procedure to add or to remove a workspace hub from the trusted list on iOS devices. For more information, see Security Connection.

Known limitation

  • On VDA 7.18 and earlier, casting to a workspace hub requires the desktop or other resource you are using to have the .h264 full-screen policy enabled and the legacy graphics policy to be disabled.

Session sharing

When users log off from a Citrix Workspace app account, if there’re still connections to applications or desktops, users have the option to disconnect or log off:

  • Disconnect: Logs off from the account but leaves the Windows application or desktop running on the server. The user can then start another device, launch Citrix Workspace app for iOS, and reconnect to the last state before the user disconnects from the iOS device. This option allows users to reconnect from one device to another device and resume working in running applications.
  • Log off: Logs off from the account, closes the Windows application, and logs off from the Citrix Virtual Apps and Desktops and Citrix DaaS (formerly Citrix Virtual Apps and Desktops service) server. This option allows users to disconnect from the server and log off from the account. When they launch Citrix Workspace app for iOS again, it opens in the default state.

Workspace with intelligence

Starting with the 1911 release, the app is optimized to take advantage of the upcoming intelligent features when they’re released. For more information, see Workspace Intelligence Features - Microapps.

iOS 13 and iPadOS support

Citrix Workspace app for iOS is supported on iOS 13 and iPadOS, including multitasking support on iPadOS.


  • The CR01 app isn’t supported on iOS 13. If you are using the CR01 app, Citrix recommends that you do not upgrade to iOS 13.

  • If you use the SHA-1 certificate chain, you must switch to the SHA-2 certificate chain. SHA-1 signed certificates are no longer trusted on iOS 13. For more information on TLS server certificates, see Requirements for trusted certificates in iOS 13 and macOS 10.15.

  • In iOS 13, launching sessions from the Safari web browser has changed. For more information, see the help documentation.

With support for AssistiveTouch, Citrix Workspace app for iOS now connects to the Citrix X1 Mouse differently. Citrix Workspace app no longer connects to the Citrix X1 Mouse at launch. Therefore, the Citrix X1 Mouse icon is no longer available on the toolbar next to the Settings icon. To see if access to a paired Citrix X1 Mouse is enabled for Citrix Workspace app, navigate to Settings > Citrix X1 Mouse.

Citrix X1 Mouse

Citrix X1 Mouse pairing and connection status

This feature lets you have more control over the Citrix X1 Mouse pairing process. On the Settings screen, you can:

  • Pair the Citrix X1 Mouse. You can also pair an X1 Mouse when you are in a session.
  • View the connection status. assistive touch scanning assistive touch resumes scanning assistive touch connected

  • View the Citrix X1 Mouse properties such as Name, UUID, Firmware Revision, and Battery Level. To do so, tap the Citrix X1 Mouse entry under CONNECTED MOUSE. assistive touch connected chevron

    Connected mouse properties:

Assistive touch properties


With the AssistiveTouch feature enabled on iOS 13 or later, you can see the AssistiveTouch cursor if you switch between desktop mouse mode and AssistiveTouch mode.


In desktop mouse mode, the pointer cursor appears. In AssistiveTouch mode, the round cursor appears.

The AssistiveTouch cursor appears when you:

  • Leave a session
  • Go to the iOS App Switcher screen
  • Go to the iOS home screen or another app

Desktop mode resumes when you navigate back to Citrix Workspace app and when you are in a session.

External monitor and toolbar support

You can use the Citrix X1 Mouse to operate the toolbar on an external monitor. You can move the toolbar notch horizontally, while the toolbar is closed. When you connect your iOS device to the external monitor, Citrix Workspace app automatically detects the screen resolution of the external monitor. You can use the Display button on the toolbar to select a particular screen resolution. You can access the Display option without having to add an account or sign in first.

Generic Mouse

Generic mouse and trackpad support

You can use a generic mouse or trackpad to right-click, scroll, and hover in HDX sessions. The actions are similar to the Citrix X1 Mouse. The style of the local mouse cursor changes to match that of the remote cursor.


  • This feature is available on iPadOS 13.4 and later.
  • This feature isn’t supported on iPhones.


If you have an external monitor connected while in a session, the generic mouse cursor remains on the native device due to an iOS limitation.

Generic mouse support on external monitors

You can use a generic mouse on external monitors connected to an iPad. Generic mouse is supported on devices running iOS 13.4 or later.


To use a generic mouse with external monitors, ensure that Presentation mode is turned off in your Citrix Workspace app by navigating to Settings > Display options.

The toolbar on the external monitor is hidden when you use a generic mouse. Also, the mouse pointer is mirrored on the external monitor and appears on both your iPad screen and on the external monitor simultaneously.

Session roaming on iPad

Starting with the 1906 release, session roaming is available on iPhone and iPad touch devices when using a cloud store. For more information, see the help documentation for iOS devices.

Keyboard layout synchronization

Keyboard layout synchronization enables users to switch preferred keyboard layouts on the client device. This feature is disabled by default.

To enable keyboard layout synchronization, go to Settings > Keyboard Options and enable the Keyboard Layout Sync option.


Using the local keyboard layout option activates the client IME (Input Method Editor). If you are working in Japanese, Chinese, or Korean language and prefer to use the server IME, disable the local keyboard layout option by clearing the option in Preferences > Keyboard.

Special key support

Support for the following single keys on an external keyboard of iOS 13.4 and later:

  • PageUp
  • PageDown
  • Home
  • End
  • F1
  • F2
  • F3
  • F4
  • F5
  • F6
  • F7
  • F8
  • F9
  • F10
  • F11
  • F12

Special key combinations support

This release adds support for the following key combinations on iOS external keyboards:

  • Windows + R
  • Windows + D
  • Windows + E
  • Windows + L
  • Windows + M
  • Windows + S
  • Windows + CTRL+ S
  • Windows + T
  • Windows + U
  • Windows + Number
  • Windows + UP
  • Windows + Down
  • Windows + Left
  • Windows + Right
  • Windows + X
  • Windows + K
  • CTRL + ESC

Host to client redirection

Content redirection allows you to control whether users access information by using applications published on servers or applications running locally on user devices.

Host to client redirection is one type of content redirection. It is supported only on Server OS VDAs (not Desktop OS VDAs).

When host to client redirection is enabled, URLs are intercepted at the server VDA and sent to the user device. The web browser or multimedia player on the user device opens these URLs. If you enable host to client redirection and the user device fails to connect to a URL, the URL is redirected back to the server VDA. When host to client redirection is disabled, users open the URLs with web browsers or multimedia players on the server VDA. When host to client redirection is enabled, users cannot disable it.

Host to client redirection was previously known as server to client redirection.

For more information, see General content redirection.

Support for Purebred derived credentials

Starting with the 1810 release, Citrix Workspace app for iOS introduces support for Purebred derived credentials. When connecting to a Store that allows derived credentials, users can log on to Citrix Workspace app for iOS using a virtual smart card. This feature is supported only on on-premises deployments.


Citrix Virtual Apps and Desktops 7 1808 or later is required to use this feature.

For information on configuring derived credentials, see Derived credentials.


External sharing of webpages

You can share the webpages you open from Citrix Workspace app with others. You can:

  • copy a link from within a webview
  • directly open a webpage in Safari
  • send links directly to people or apps

To do share, tap the icon on the top right of the webview or long tap any link within the webview and tap the option you need.


Enhanced webview with native controls for SaaS apps

You can have an enhanced webview with native controls for SaaS apps. This enhancement allows you to:

  • View the URL of your apps.
  • View the security information of your apps.
  • Share your apps.

Also, you can now swipe your apps left and right to move forward and backward, respectively.

Usability enhancement

The usability enhancement lets you navigate back and forth within web and Software-as-a-Service (SaaS) apps, in addition to the microapp view.

The navigation buttons appear at the bottom left of your Workspace web and SaaS app sessions of your iPhone.


The navigation buttons appear at the top left of your Workspace web and SaaS app sessions of your iPad.


Client Drive Mapping (CDM)

You can select a specific device storage access for every configured store. Device storage access has the following options.

  • No access
  • Read-only access
  • Read and write access
  • Ask me every time

If you select Ask me every time, a prompt appears, asking you to select the type of device storage access at every launch. By default the No access option is selected.


This feature applies only on direct ICA launches and Citrix Gateway configured stores. Stores without end-to-end SSL setup aren’t supported.

The Device Storage settings are available under a new section in the settings called Store Settings. To view Device Storage, navigate to Settings > Store Settings.

Microphone and camera access

You can now access your microphone and camera for audio-video conferencing through a VDA session. Citrix Workspace app requires your permission to access microphone or camera which can be provided by navigating to Settings on your device and enabling camera or microphone.

Also, per-store microphone and camera access as a part of the client-selective trust security feature has been included to allow Citrix Workspace app to trust access from a VDA session.

Citrix Workspace app requires the user’s permission to access the microphone or camera.

You can configure the access levels by navigating to Settings > Store Settings. In the Store Settings menu, click a store to enable the required microphone or camera access. The selected setting for microphone or camera access is applied on a per-store basis.

Cloud stores

You to access the web, SaaS apps, and websites hosted by your organization, regardless of your access location. This feature is available only for customers on cloud stores.

Citrix Workspace mobile app web viewer

The web viewer is an in-app browsing solution running within the Citrix Workspace app. It enables users to open web or SaaS apps from the Citrix Workspace app in a secure manner. The web viewer ensures a consistent user interface while accessing various web or SaaS apps while improving your productivity and giving you a great performance in rendering those apps.

With a continued focus on enriching the user-experience, the new web viewer brings you an enhanced and a more native browser-like experience, complete with the following features:

  • VPN-less access to internal webpages
  • SSO for web and SaaS with Adaptive access policies
  • File downloading with preview
  • Seamless navigation between pages and sites
  • Ability to share URLs
  • Find in page
  • Same view when accessing links through the activity feed

Administrators can enable Secure Private Access (SPA) including download, clipboard, navigation restrictions, and watermarking in varying combinations on a per-URL basis.

User experience

EDT stack parameters enabled by default

The Read EDT stack parameter option is removed from Advanced > Adaptive Transport Settings and is enabled in the background by default. This update provides a better user experience by ensuring that you don’t have to enable this feature when you install Citrix Workspace app for iOS.

End user experience monitoring enhancement

We now support the EUEM (End user experience monitoring) client startup metrics. EUEM helps in collecting highly granular session experience monitoring data in real time. It sends the data to the Director dashboard, so that the administrator can monitor the user experience. The data is collected through the Session experience monitoring service (SEMS) present on the VDA. Client startup metrics data available for monitoring on the dashboard includes:

  • ICA file download duration.
  • Session creation client duration. Session creation client duration represents the time taken to create a session, from the moment an ICA file is launched to the time when the connection is established.
  • Session lookup client duration. Session lookup client duration represents the time taken to query every session for hosting the requested published application. The check is performed on the client to determine whether an existing session can handle the application launch request.
  • Citrix real-time recording of the ICA round trip time, also known as ICA RTT. ICA RTT is the time that elapses from when the user presses a key until the response is displayed at the endpoint.

Battery status indicator

The battery status of the device now appears in the notification area within the virtual desktop session.

This feature is supported only on VDA versions 7.18 and later.


  • In sessions running on Microsoft Windows 10 VDAs, the battery status indicator might take about 1 to 2 minutes to appear.

Free demo access

Trying out the Citrix Workspace experience on mobile devices just got easier. Potential users and anyone interested now have free demo access of the Citrix Workspace app for iOS.

You can get to know about Citrix Workspace app by requesting a free 72-hour trial.

To request free demo access:

  1. Tap Request demo access on the Citrix Workspace app Sign in screen. Request demo
  2. The Citrix request demo access webpage appears.
  3. Enter your required details like name, company, address, phone number, city, work email address, and then tap Submit Request. Email address for demo
  4. You receive a temporary user name and password on your work email address. Enter the temporary user name and password on the Sign in screen. You now have free demo access to Citrix Workspace app for 72 hours.

Long press functionality to access resource

You can now long press the Citrix Workspace app icon and access your most recently launched resource. You can now quit the Citrix Workspace app and access your most recently launched resource.

Find in page enhancement

The Find in page enhancement lets you search for words or phrases. This usability enhancement is applicable within your Web, Software-as-a-Service (SaaS) apps, and from the microapp view.

To search:

  1. On your iPad, tap the ellipsis (…) button on the upper-right corner and then select Find in page. Find in page for iPad On your iPhone, tap the ellipsis (…) button on the lower-right corner and then select Find in page. Find in page for iPhone The on-screen keyboard appears. Keyboard
  2. Type the text that you want to search for in the text box (for example, type the word “Citrix”). The search results appear. Search result

You can use Spotlight search to find your desktops and your Web, SaaS (Software-as-a-Service), and desktop apps. You can then access these apps and desktops directly from Spotlight search without launching Citrix Workspace app.


  • The Spotlight search feature doesn’t support mobile apps.

Spotlight search

Reposition the in-session toolbar

You can reposition the in-session toolbar either on the top or on the right of the screen. When you drag the toolbar notch away from the toolbar edge, the rectangle drag indicator and the drop target appear. Drop the drag indicator over the drop target to reposition the toolbar.


  • The feature is applicable for iPad users only.
  • The feature functions with touch or mouse.
  • The feature functions with an iPad or on an external display.
  • The last toolbar position persists for the next session or the application launch.

Feeds widget

You can configure and view the Citrix Workspace app notification feeds using a widget. You can add it on the iOS home screen. This feature enhances your experience and lets you view the recent feeds.

Tapping the feed opens the detailed view on the Citrix Workspace app. This feature supports iOS version 14.0 and later.


This feature supports cloud accounts. However, if there’s no cloud account configured, the widget displays an appropriate message to add a Workspace store.

To configure the notification feed widget:

  1. Touch and hold anywhere on the home screen. The apps begin to jiggle.
  2. Tap the + button at the top of the screen. The Search Widget screen appears.
  3. Enter the word Workspace in the search box and tap the Citrix Workspace app. The Activity Feed screen appears.
  4. Click Add Widget. The widget appears on the home screen.
  5. Click Done. You can now interact with the Feeds widget.


To remove the widget, tap and hold the widget to open the quick actions menu. Tap Remove Widget, then tap Remove.

Spotlight search enhancement

The app icon matches the corresponding app search. Previously, the Citrix Workspace app icon was displayed for all the searches.

Spotlight Search

Accessing recent apps by 3D-Touch gesture

You can access a list of recently launched apps for quick access when you use the 3D-Touch (long-press) gesture on the Citrix Workspace app icon.

Migration from on-premises to cloud account

Administrators can seamlessly migrate the end users from an on-premises StoreFront store URL to a Workspace URL. Administrators can do the migration with minimum end user interaction using the Global App Configuration Service.

To configure:

  1. Navigate to the Global App Configuration Store Settings API URL and enter the cloud store URL. For example,<hash coded store URL>/product/workspace/os/ios.
  2. Navigate to API Exploration > SettingsController > postDiscoveryApiUsingPOST > click POST.
  3. Click INVOKE API.
  4. Enter and upload the payload details. Enter the StoreFront store expiry date in the epoch timestamp in milliseconds format.

    For example,

    "migrationUrl": [
    "url": "<cloud store url>"
    "storeFrontValidUntil": "<epoch timestamp in milliseconds>",
    ]   ,
  5. Click EXCUTE to push the service.

End user Experience

As an end user, if you’re using the Citrix Workspace app for the first time, after successful authentication, the Introducing the new Citrix Workspace migration screen appears (if eligible). After you tap the Try new Citrix Workspace now option, migration begins. Upon successful migration, you can access the Workspace store (cloud store).


You can skip the migration for three attempts. Later, the migration is forced without an option to skip.

New workspace

After you migrate to the Workspace (cloud) store, you can view both the StoreFront and the Workspace store under Settings. When you switch from a cloud store to the on-premises StoreFront store, a feedback screen appears to gather your response.


The StoreFront store has an expiry date. Post the expiry date, the store gets deleted.

Extended multi-monitor support with Generic Mouse for iPad


This feature is in preview for version 22.3.5 and earlier.

You can extend the desktop session onto an external monitor when you connect your iPad with a Generic Mouse. This feature supports iPadOS version 14.0 and later.


  • This feature can be partially available in earlier versions. To use the complete feature, upgrade to version 22.1.0.
  • Disable AssistiveTouch in iOS Settings > Accessibility > Touch > AssistiveTouch for the Citrix Workspace app to receive primary mouse clicks.

Configure Extend mode

To enable the Extend mode:

  1. Connect the external monitor to the iPad using the HDMI cable and the required adapters.


    The setup works best with an Apple’s USB-C to Digital AV Multiport Adapter or Lightning Digital AV Adapter.

  2. Navigate to the application Settings > Display options and toggle ON the External display. Different display modes appear. Mirror and Presentation modes also use Generic Mouse, if the iPadOS version is 14.0 and later.

    External display

  3. Select the Extend option.

    Extend mode


  • Set the Extend mode before you launch and extend the desktop session.
  • The Extend mode isn’t supported on the iPhone until announced.

Configure display arrangement

To configure the display arrangement:

  1. Select the Extend mode, the Display arrangement option appears.
  2. Reposition the External display tile left, top, right, or bottom to the iPad display.


You can adjust the display arrangement when you’re in a session using the in-session toolbar > Display setting icon.

Extend display


The external display resolution depends on:

  • adapters
  • iPad
  • other hardware used

Generic Mouse mode versus Citrix X1 Mouse mode

The Generic Mouse mode automatically takes precedence over the Citrix X1 Mouse mode. If you have an X1 Mouse connected, it’s used as a Generic Mouse instead. So, the X1 Mouse settings page isn’t accessible when the Generic Mouse feature flag is enabled.


For iPadOS version 14.0 and later, any X1 Mouse that is connected to the iPad behaves as a Bluetooth mouse.

Mouse not available

Generic Mouse icon

The Mouse settings icon is added on the in-session toolbar next to the Display settings icon. Use the Mouse settings to adjust the tracking speed of the Generic Mouse when you are in a session. You can also toggle using the remote cursor image.


You can adjust the tracking speed of the native mouse from the iOS settings.

Mouse settings

Feature limitations

  • To ensure that the Citrix Workspace app receives primary mouse clicks, disable AssistiveTouch in iOS Settings > Accessibility > Touch > AssistiveTouch.

  • Tracking Speed and Natural Scrolling options from iOS settings doesn’t affect the generic mouse inside the session. However, scrolling speed can be controlled from the iOS Settings. You can access Tracking speed and Natural scrolling options from the Mouse Settings screen inside the session toolbar.

  • When an iPad is used in the split mode and the monitor is connected, the generic mouse works only in the mirror mode inside a desktop session.

  • If the native cursor is over the multi-tasking menu before the app obtains the pointer lock, that is, before the session launch, the mouse events aren’t received. As a workaround, pull down the Notification Center and move the native pointer to a different location and dismiss the Notification Center.

  • Audio redirection fails when you connect an iPad to an external monitor. The audio plays through the iPad speakers. [HDX-39159]

Known issues in the feature

  • While the session is active, the desktop image that appears on an iPad or an external monitor gets disturbed when you change the:
    • Display arrangement
    • Resolution
    • Orientation or
    • Display modes

    As a workaround, disconnect and reconnect the monitor. If the issue persists, disconnect, and relaunch the session. [HDX-37038][HDX-36979] [HDX-36925] [HDX-36924].

  • On rare occasions, you can observe a few seconds lag in the audio when the video is played on the external monitor. [HDX-39159]

  • On rare occasions, the VDA display is truncated on an iPad and on the external monitor. As a workaround, disconnect, and reconnect the monitor. If the issue persists, disconnect and relaunch the session. [HDX-37100]

  • When you maximize the video to full-screen on the external monitor, you might observe video quality issues. [HDX-39159]

  • On rare occasions, inside a desktop session, an attempt to move the apps from an iPad to the external monitor fails. As a workaround, disconnect and reconnect the monitor. If the issue persists, disconnect, and relaunch the session. [HDX-36981]

  • On rare occasions, when you connect an iPad to an external monitor using third-party adapters, the Display Modes aren’t visible under the Display Options. [HDX-39713]

  • Sometimes, a line is observed under the mouse pointer inside the VDA session. [RFIOS-9569]

Siri integration

You can interact with Siri to launch resources like apps and desktops without launching Citrix Workspace app each time.

For more information, see Siri integration in the Configure section.

To configure

  1. Launch Citrix Workspace app and tap Apps or Desktops. Select the resource that you want to add to the Siri shortcut.
  2. Tap ellipsis (…). A dialog box appears.


    If you are an iPhone or an iPad Desktop user, tap ellipsis (…) > App Details screen > View Details. A dialog box appears. Continue with step 3.


  3. Tap Add to Siri. The Add to Siri dialog box appears.


  4. (Optional) Edit the custom phrase for invoking Siri. Tap Add to Siri. The resource is now added to the Siri shortcut. Close the dialog box.


    A few devices support recording the custom phrase for invoking Siri.


Application Settings

Launch Citrix Workspace app and tap on your profile icon > Application Settings > Siri Configuration. To enable the feature, tap Add to Siri.


You can now use your voice to launch the resource.

To edit or delete the shortcut

  1. Select the resource.
  2. Tap ellipsis (…). A dialog box appears.
  3. Tap Added to Siri. The Edit Shortcut dialog box appears.

    You can modify the custom phrase for invoking Siri and tap Save Shortcut or tap Delete Shortcut to remove the existing shortcut.

Safari view controller

End users can now handle certificate-based authentication where, the certificates are saved onto the device keychain. While signing in, Citrix Workspace app detects the list of certificates on your device, and you can choose a certificate for authentication.


After you choose the certificate, the selection persists for the next Citrix Workspace app launch. To choose another certificate, you can “Reset Safari” from iOS device settings or reinstall Citrix Workspace app.

Safari View Controller


This feature supports on-premises deployments.

To configure:

  1. Navigate to the Global App Configuration Store Settings API URL and enter the cloud store URL. For example,<hash coded store URL>/product/workspace/os/ios.
  2. Navigate to API Exploration > SettingsController > postDiscoveryApiUsingPOST > click POST.
  3. Click INVOKE API.
  4. Enter and upload the payload details. Select one of the following values:

    • “Embedded”: you can use WKWebView. This option is set by default.
    • “system”: you can use the Safari view controller.

    For example,

    "category": "Authentication",
    "userOverride": false,
    "settings": [
    { "name": "Web Browser to use for Authentication", "value": "*Embedded*/*System*" },
  5. Click EXCUTE to push the service.