Product documentation
Citrix Workspace app for iOS
View PDF

Citrix Workspace app 24.7.0 for iOS - Preview

July 16, 2024
Contributed by: 
C S N

You can download Citrix Workspace app for iOS 24.7.0 preview version from the TestFlight page.

For information on installation, see the Install page.

You can give the feedback for this Early Access Build using this Podio form.

Note:

This is an Early Access Build shared for the purpose of testing or validation with the intent to make organizations ready for the upcoming release and is NOT advised to be deployed in production environments.

What’s new in 24.7.0

Support for DTLS 1.2

Starting with version 24.7.0, Citrix Workspace app for iOS supports DTLS protocol version 1.2. DTLS 1.2 provides enhancements and improvements over the previous version, which includes robust encryption algorithms, better handshake protocols, and protection against various attacks. This protocol improves overall security.

Note:

If there is any issue with DTLS protocol version 1.2, Citrix Workspace app for iOS seamlessly falls back to the previous supported versions.

Detect and display keyboard language change in the virtual session

Starting with the 24.7.0 version, Citrix Workspace app for iOS now automatically detects and displays a message within the virtual session when user switches the keyboard language. When you switch keyboard languages using the globe key in the device keyboard or external keyboard, a message appears on the screen notifying about the current keyboard language. This feature ensures that you’re aware of the current keyboard language within the virtual session.

Detect language

Support for adaptive audio

Starting with the 24.7.0, Citrix Workspace app for iOS supports HDX adaptive audio. This feature improves the user experience by providing improved audio quality and low latency.

For more information, see the Audio policy setting article in the Citrix Virtual Apps and Desktops documentation.

Support for configuring Citrix Workspace app settings through UEM

Previously, you can only configure the store URL in the Citrix Workspace app using the Unified Endpoint Management (UEM).

Starting with the 24.7.0 version, you can also configure the Citrix Workspace app settings on the managed devices using any UEM solution that is deployed in your infrastructure.

Note:

As an administrator, if you have an option of configuring the Citrix Workspace app settings using UEM and Global App Configuration service (GACS), UEM always takes a higher preference over GACS.

The following is a sample json file to configure the Citrix Workspace app settings:

<dict>
    <key>stores</key>
    <array>
        <dict>
            <key>url</key>
            <string>https://teststore.cloud.com</string>
            <key>storeType</key>
            <integer>1</integer>
            <key>displayName</key>
            <string>Cloud Store 1</string>
            <key>appSettings</key>
            <array>
                <dict>
                    <key>category</key>
                    <string>audio</string>
                    <key>userOverride</key>
                    <false/>
                    <key>settings</key>
                    <array>
                        <dict>
                            <key>name</key>
                            <string>settings_audio_stream</string>
                            <key>value</key>
                            <true/>
                        </dict>
                    </array>
                </dict>
                <dict>
                    <key>category</key>
                    <string>authentication</string>
                    <key>userOverride</key>
                    <false/>
                    <key>settings</key>
                    <array>
                        <dict>
                            <key>name</key>
                            <string>settings_auth_web_browser</string>
                            <key>value</key>
                            <string>embedded</string>
                        </dict>
                    </array>
                </dict>
            </array>
        </dict>
        <dict>
            <key>url</key>
            <string>https://teststore.cloud.com</string>
            <key>storeType</key>
            <integer>1</integer>
            <key>displayName</key>
            <string>StoreFront1</string>
            <key>appSettings</key>
            <array>
                <dict>
                    <key>category</key>
                    <string>audio</string>
                    <key>userOverride</key>
                    <false/>
                    <key>settings</key>
                    <array>
                        <dict>
                            <key>name</key>
                            <string>settings_audio_stream</string>
                            <key>value</key>
                            <false/>
                        </dict>
                    </array>
                </dict>
                <dict>
                    <key>category</key>
                    <string>authentication</string>
                    <key>userOverride</key>
                    <false/>
                    <key>settings</key>
                    <array>
                        <dict>
                            <key>name</key>
                            <string>settings_auth_web_browser</string>
                            <key>value</key>
                            <string>system</string>
                        </dict>
                    </array>
                </dict>
            </array>
        </dict>
    </array>
    <key>storesToDelete</key>
    <array>
        <string>test.cldblr.com</string>
        <string>test.cloud.com</string>
    </array>
    <key>restrict_user_store_modification</key>
    <false/>
</dict>
<!--NeedCopy-->

Note:

The userOverride flag allows the user to modify the Citrix Workspace app settings. If the userOverride flag is set to true, the user can change the settings. If the userOverride flag is set to false for any settings, then the user can’t modify it in the Citrix Workspace app settings.

Key value pair table

The following table provides the key value pair information:

Note:

You must add settings that are specific to a category in one block under that category.

Category Setting Description Key Value Value Type Default value
audio Audio Provides access to users to turn the audio on or off from the virtual app or desktop. settings_audio_stream true/false Boolean TRUE
keyboard Use Unicode Keyboard Allows users to use a standard Unicode keyboard. settings_use_unicode_keyboard true/false Boolean TRUE
keyboard Automatic keyboard Enables or disables the automatic display of the keyboard in a session. settings_automatic_keyboard true/false Boolean TRUE
keyboard Keyboard Layout Sync Allows users to switch to a preferred keyboard layout on the device. settings_keyboard_layout_sync true/false Boolean FALSE
keyboard Use Custom Keyboards Allows users to use third-party keyboards that are downloaded in the virtual session. settings_allow_keyboard_extensions true/false Boolean FALSE
display Session Resolution Allows users to select the screen resolution. settings_resolution 0–9 Integer 5 (iPad) 3 (iPhone)
display Presentation Mode Allows you to use your iOS device as a trackpad to control your session while using an external display. settings_presentation_mode true/false Boolean FALSE
display External Display Connects an external display to the device. settings_external_display true/false Boolean TRUE
advanced Strict Certificate Validation Enforces stricter control on server certificate validation. settings_strictCertValidation true/false Boolean FALSE
advanced TLS Versions Allows users to change their TLS settings for troubleshooting purposes. settings_tlsVersion 0–3 Integer 0
advanced Use Native Combo Box Enables the use of the iOS native selection feature. settings_native_combobox true/false Boolean TRUE
advanced Touch Enable (iPAD only) Enables touch for all apps and desktops, including those that do not have the touch option enabled natively. settings_multitouch_on true/false Boolean true (iPad) false (iPhone)
advanced Fullscreen View Allows you to view your apps and desktops in full screen. settings_mobile_window_fullscreen true/false Boolean true (iPad) false (iPhone)
advanced Reconnect upon Login Allows a session to automatically reconnect when a new account is added or during sign-in. settings_reconnect_logon true/false Boolean FALSE
advanced Reconnect upon Refresh Automatically reconnects to a session launched from another device upon refresh of the apps or desktops on the second device. settings_reconnect_refresh true/false Boolean FALSE
advanced Enable HTTP Proxy Allows you to use the HTTP proxy for a session. settings_use_local_proxy true/false Boolean TRUE
advanced Use derived credentials Allows to use derived credentials. setting_useDerivedCredentials true/false Boolean FALSE
advanced Smart Card in session Allows the use of a smart card device within a session. This setting doesn’t allow users to authenticate to the session. settings_usesSmartCardInsideSession true/false Boolean FALSE
advanced Allow EDT Enables adaptive transport support. settings_allowUdp true/false Boolean TRUE
advanced Auto Tablet Mode Enables to launch the virtual session in tablet mode, when there is no external keyboard or mouse detected. settings_enableTabModeSwitch true/false Boolean TRUE
advanced Keep the Display On Keep the screen on. settings_stay_awake true/false Boolean FALSE
advanced Use iPAD storage Allows you to access local drives on your device. settings_client_drive true/false Boolean false
X1 Mouse Allow X1 Mouse Allows you to switch access to your Citrix X1 Mouse. settings_allow_X1_mouse true/false Boolean FALSE
X1 Mouse Citrix X1 Mouse speed Allows users to control the speed of the mouse cursor within the virtual session. settings_x1MouseSpeed 1,2 Integer 200 (iPadPro) 100 (All other devices)
X1 Mouse Use remote cursor image forCitrix X1 Mouse Makes the cursor match the app or desktop within a session. For example, if the cursor is over a text box, it changes to match the text box. settings_X1_mouse_server_side_cursor true/false Boolean TRUE
authentication Web Browser for Authentication Allows you to identify usage of SafariViewController instead of WKWeb on the device. settings_auth_web_browser system/embedded string Embedded
thirdPartyServices LaunchDarkly Enables the LaunchDarkly flag on the Citrix Workspace app features. enableLaunchDarkly true/false Boolean true (non-EU regions)

Support for multiple audio devices (Technical Preview)

Starting with the 24.7.0 version, Citrix Workspace app for iOS supports displaying all available audio devices that are connected locally in the virtual desktop session. With this feature, you can switch audio devices within the virtual desktop session. If you switch audio devices in the device settings locally, the changes are applied to the virtual desktop session automatically. This feature is also supported for plug-and-play devices.

Multiple audio devices

Limitation

  • Devices that are speaker-only and microphone-only are not supported.
  • Apple’s AirPlay devices are not supported.
  • This feature supports either a bluetooth device or a wired headset device at a time in the virtual session.

To request access for this feature, fill out this Enablement form.

Note:

Technical previews are available for customers to test in their non-production or limited production environments, and to give customers an opportunity to share feedback. Citrix does not accept support cases for feature previews but welcomes feedback for improving them. Citrix might or might not act on feedback based on its severity, criticality, and importance. It is advised that Beta builds aren’t deployed in production environments. You can provide feedback for this feature using this Feedback form.

Support for App Protection [Technical Preview]

Starting with the Citrix Workspace app for iOS 24.7.0 version, the App Protection feature is supported.

App Protection is a feature for the Citrix Workspace app that provides enhanced security when using Citrix Virtual Apps and Desktops published resources. This feature restricts the ability of clients to be compromised by keylogging and screen capturing malware. App Protection prevents exfiltration of confidential information such as user credentials and sensitive information that is displayed on the screen. The feature prevents users and attackers from taking screenshots and from using keyloggers to glean and exploit sensitive information.

From the Citrix Workspace app for iOS 24.7.0 version, the following features are enabled:

  • Anti-screen capture - This feature prevents unauthorized screen captures, recordings, QuickTime screen mirroring, screen sharing, and app switching. Anti-screen capture feature is available for authentication screen, web or SaaS apps, and Citrix Virtual Apps and Desktops. When you capture a screen, a custom message Screen Capture is disabled by your administrator for security reasons is shown in the capture media instead of the actual content displayed on the screen. Anti-screen capture protects against various forms of unauthorized screen access such as:

    • Screenshot: Prevents screenshots from being taken.
    • Screen recording: Blocks screen recording software.
    • Screen mirroring: Disables mirroring of the screen to other devices.
    • Screen share: Restricts screen sharing functionality.
    • App switcher: Prevents sensitive information from being visible in app switcher previews.

    Screen capture disabled

  • Anti-keylogging - This feature protects against keylogging attempts at the application level, ensuring that sensitive information entered into protected applications remains secure. This feature allows you to use only the Apple provided default keyboards ensuring that keystrokes entered into protected applications cannot be captured. App Protection prevents the usage of custom keyboards as part of the anti-keylogging feature. If you have enabled custom keyboards, you can disable them and then continue using the resources that are enabled using App Protection’s anti-keylogging feature.

Anti-keylogging enabled

The admins can choose to enable anti-keylogging and anti-screen capture for the following:

  • Virtual Apps and Desktops
  • Web and SaaS apps opened through WebView
  • Authentication screens

To request access for this feature, fill out this Enablement form.

Note:

Features in the Technical Preview are available to use in non-production or limited production environments, and to give customers an opportunity to share feedback. Citrix does not accept support cases for features in technical preview but welcomes feedback for improving them. Citrix might act on feedback based on its severity, criticality, and importance.

To enable the App Protection feature, see Configure App Protection.

Disclaimer:

App Protection policies work by filtering access to required functions of the underlying operating system (specific API calls required to capture screens or keyboard presses). This means that App Protection policies provide protection even against custom and purpose-built hacker tools. However, as operating systems evolve, new ways of capturing screens and logging keys emerge. While we continue to identify and address them, we can’t guarantee full protection in specific configurations and deployments.

Prerequisites

  • Citrix Virtual Apps and Desktops Version 1912 LTSR or later.
  • StoreFront version 1912 LTSR or Workspace.
  • Citrix Workspace app for iOS version 24.7.0 or later.
  • A valid App Protection license

Configuration

You can configure the Anti-keylogging and Anti-screen capture features for the following for Citrix Workspace app for iOS:

Using Global App Configuration service

You can configure the Anti-screen capture feature for the authentication screen using:

  • Using UI
  • Using API

Using UI:

Starting with Citrix Workspace app for iOS 24.7.0 version, Citrix Workspace app allows you to configure App Protection for authentication screens using Global App Configuration service (GACS).

If you enable the anti-screen capturing functionality using the GACS, they’re applicable to the authentication screen.

Administrators can configure App Protection using the Workspace Configuration UI:

  1. Sign in to your Citrix Cloud account and select Workspace Configuration.

    Workspace configuration

  2. Select App Configuration > Security and Authentication > App Protection.

    Security and authentication

  3. Click Anti Key Logging and then select the iOS Operating System.

  4. Click Anti Screen Capture and then select the iOS Operating System.

  5. Click the Enabled toggle button and then click Publish Drafts.

  6. In the Publish Settings dialog box, click Yes.

    Publish settings

Using API:

The administrators can use the API to configure the App Protection features. The settings are as follows for Citrix Workspace app for iOS:

Setting to enable or disable anti-screen capturing:

“name”: “enable anti screen capture for auth ” “value”: “true” or “false”
<!--NeedCopy-->

Setting to enable or disable anti-keylogging:

“name”: “enable anti key-logging for auth ” “value”: “true” or “false”
<!--NeedCopy-->

Example:

Following is a sample JSON file to enable anti-screen capture and anti-keylogging features for Citrix Workspace app in GACS:

{
          "category": "App Protection",
          "userOverride": false,
          "assignedTo": [
            "AllUsersNoAuthentication"
          ],
          "settings": [{
            "name": "Enable Anti Screen Capture For Auth",
            "value": "true"
          },
          {
            "name": "Enable Anti Key Logging For Auth",
            "value": "true"
          }]
        }

<!--NeedCopy-->
Using Unified Endpoint Management solutions

Starting with the 24.7.0 version of Citrix Workspace app for iOS, administrators can enable App Protection feature for the authentication screen. Administrators can configure this feature using an AppConfig-based key-value pair.

  • For enabling anti-screen capture:
    • Key: enableAntiScreenCaptureForAuth
    • value type: Boolean
    • value:
      • If set to true, the anti-screen capture feature is enabled.
      • If set to false, the anti-screen capture feature is enabled.
  • For enabling anti-keylogging:
    • Key: enableAntiKeyLoggingForAuth
    • value type: Boolean
    • value:
      • If set to true, the anti-keylogging feature is enabled.
      • If set to false, the anti-keylogging feature is enabled.

Steps to disable custom keyboards

When the anti-keylogging feature is enabled and the Use Custom keyboards toggle switch is turned on, you can’t open virtual apps, virtual desktops, web apps, or SaaS apps and the following alert message appears:

Anti-keylogging enabled

To disable the custom keyboard, do the following:

  1. Click Keyboard Options in the preceding alert dialog box.

  2. Clear Use Custom keyboards from the store settings. The Disable Custom Keyboards dialog box appears.

  3. Click Exit in the Disable Custom Keyboards dialog box. The Exiting dialog box appears.

  4. Click OK. Citrix Workspace app exits and then restarts automatically to reflect the changes.

Limitations

  • Keylogging prevention:

    Keylogging prevention is only effective through soft keyboards. Hardware keyboards are not protected by the anti-keylogging feature.

  • Anti-keylogging for Authentication Screen:

    Anti-keylogging is not supported for the authentication screen when multiple stores are added or when a store is deleted.

  • System browsers:

    The anti-keylogging feature for the authentication screen is not supported when using system browsers.

  • Extended multi‑monitor support with iPad OS:

    Anti-screen capture capability is not supported on the windows shown on the external monitors.

  • Web interface authentication screen:

    Anti-screen capture and anti-keylogging features aren’t supported on the web interface authentication screen.

Fixed issues in 24.7.0

  • Citrix Workspace app for iOS NetScaler store users might be unable to sign in to the new UI if Secure Private Access is enabled with clientless VPN (cVPN) policies.

Known issues in 24.7.0

There are no new known issues.

Citrix Workspace app 24.7.0 for iOS - Preview
July 16, 2024
Contributed by: 
C S N
July 16, 2024
Contributed by: 
C S N

In this article

Site feedback | Your privacy choices footer linkYour Privacy Choices | Privacy and legal terms | Cookie preferences | Consent settings | docs.cloud.com
© 1999- Cloud Software Group, Inc. All rights reserved.