Citrix Workspace app for Windows 2508 - Preview

Note:

• If.NET isn’t installed on the system or a version less than 8.0.16 is installed on the system, Citrix Workspace app installs .NET version 8.0.16.

• If you install any supported higher version of .NET, Citrix Workspace app is compatible with the highest available .NET version (up to 8.x).

What’s new

The following is a list of features that are available in Citrix Workspace™ app 2508 for Windows:

• Extends long-term support to Windows 11 IoT enterprise LTSC
• Automated Endpoint Analysis client installation
• Service continuity enabled without self-service mode
• Citrix Troubleshoot Connection
• Enhanced storebrowse session handling
• Support for GACS claimed URLs for the US Gov region
• Automated sign-out on session disconnect
• ADMX file import support for Intune
• Modular Browser Content Redirection
• Microsoft Teams plugin automatic installation
• Zoom 64-bit plug-in management support
• uberAgent® add-on support for managed devices in Citrix Workspace app
• Enhanced background blur persistence for webcam
• Enhanced keyboard layout settings notification
• License telemetry upload using Citrix Workspace app
• Enable noise suppression
• Browser Profile Sharing in Browser Content Redirection - Technical Preview
• Version upgrade for Chromium Embedded Framework
• HDX™ graphics superresolution upscaling (Preview)
• Citrix Enterprise Browser™
• App Protection support for ARM64 on Windows
• App Protection Health Checker

Extends long-term support to Windows 11 IoT enterprise LTSC

Citrix Workspace app for Windows now supports Windows 11 IoT Enterprise Long-Term Servicing Channel (LTSC), offering vital stability and reliability for these devices. This crucial enhancement supports fixed-function, special-purpose devices, ensuring a 10-year long-term support lifecycle, providing essential and lasting stability. This support particularly benefits industries like banking, quick-service restaurants, healthcare, hospitality, manufacturing, and retail, requiring consistent equipment operation.

Automated Endpoint Analysis client installation

The Endpoint Analysis client for Windows now automatically installs with Citrix Workspace app, providing significantly easier deployment than previous GACS-only automatic installation options. This auto-installation greatly aids deployment for customers using BYOD and unmanaged devices, streamlining processes for administrators and boosting overall efficiency.

Note:

Starting with Endpoint Analysis client version 25.8.1.2, support for 32-bit systems has been discontinued.

Service continuity enabled without self-service mode

Disabling self-service mode removes the user interface, allowing users to launch applications and desktops exclusively through shortcuts.

Service continuity is now supported even when self-service mode is disabled in Citrix Workspace app for Windows.

Citrix Troubleshoot Connection

Citrix empowers end users to self-troubleshoot desktop or app launch failures. The system provides recommendations to fix issues. Users can execute fixes with a single button click. Enhanced error messages help users understand launch failure causes clearly.

The Citrix Troubleshoot Connection feature analyzes VDA reachability challenges during launch. It provides user-friendly error messages in real time during failures. The feature offers recommendations to fix issues or collect logs for support tickets.

Potential virtual app and desktop launch issues

Launch issues can occur in these connection points:

• Network connectivity from Client to gateway
• Gateway to StoreFront™ server
• StoreFront server to Broker connection
• Broker to VDA connection

User-friendly error messages and diagnostics

Citrix displays clear, user-friendly error messages when launches fail. The messages point to specific connection issues. Examples include network errors, server unavailability, and VDA failures.

Self-recovery and recommendations

The Citrix Troubleshoot Connection feature includes steps for automatic recovery. This reduces support tickets. The following problems can be resolved with remediation:

• Restart VDA
• Restart CWA
• Re-Login To CWA
• Refresh Resource List
• Refresh App and try
• Reconfigure The Store
• Upgrade CWA
• Reinstall CWA
• Check Network
• Wait And Retry

System requirements

• Citrix Workspace app for Windows 2507 and later versions

Feature details

The Troubleshoot Connection feature is enabled by default for DaaS environments. Enhanced error messages and recommendations are provided for both browser-launched sessions and native Citrix Workspace app sessions.

Error codes are references for administrators and are available in logs. The codes are split between server-side errors and client-side errors. The feature provides “Restart VDA” as a remediation action for some errors. It does not support sessions launched through hybrid launch mode (downloading ICA® file from browser and launching with native Citrix Workspace app).

Common server-side errors

Citrix Workspace app for Windows errors

Enhanced storebrowse session handling

Starting with this release, storebrowse’ session handling is improved with the following enhancements, optimizing user experience and critical resource management within high-availability environments to boost efficiency:

• Storebrowse intelligently ignores existing sessions when launching virtual applications - This option prevents reconnects to sessions actively being torn down by the system now, improving stability. This ensures seamless, error-free access to critical business applications, especially during client updates, simplifying management by reducing complex configuration needs. To enable intelligent session handling, administrators must add the -I true parameter to existing storebrowse commands. This parameter integrates seamlessly with all existing launch types while maintaining current syntax structure.

  Command example:

  Quick Launch:

  Previous syntax:

   .\storebrowse.exe -U {Username} -P {Password} –D {Domain} -q {Launch_URL_of_published_ apps and desktops} <https://cwa-ddc2c.cwa.com/Citrix/Store/resources/v2/Q29udHJvbGxlci5DYWxjdWxhdG9yLVRTVkRBMTk-/launch/ica> < https://cwa-ddc2c.cwa.com/citrix/store/discovery>
   <!--NeedCopy-->
  

  Enhanced syntax with intelligent session handling:

   .\storebrowse.exe -U {Username} -P {Password} –D {Domain} -I true -q {Launch_URL_of_published_ apps and desktops} https://cwa-ddc2c.cwa.com/Citrix/Store/resources/v2/Q29udHJvbGxlci5DYWxjdWxhdG9yLVRTVkRBMTk-/launch/ica> < https://cwa-ddc2c.cwa.com/citrix/store/discovery>
   <!--NeedCopy-->
  

• Storebrowse API support for returning session lists - This option provides valuable visibility into active user sessions, enabling more contextualized and efficient session launches. This improved visibility decreases user-impacting errors and delays during application access, ensuring a smoother, more reliable experience for all users.

Support for GACS claimed URLs for the US Gov region

Starting with version 2508, Citrix Workspace app supports discovery of Global App Config Service (GACS) claimed URLs for the US Gov region alongside commercial cloud deployments.

You can select the region from which Citrix Workspace app retrieves discovery endpoints using the GACS Discovery Region policy setting.

1. Open the Citrix Workspace app Group Policy Object administrative template by running gpedit.msc.

2. Under the Computer Configuration node, go to Administrative Templates > Citrix Components > Citrix Workspace > Global App Config Service.

3. Select the GACS Discovery Region option.

   

4. Select Enabled.

5. Select one of the following options:

   • US Gov - Discovery endpoint uses the U.S. region.
   • Default - Discovery endpoints uses the default global endpoint.

For more information, see the following:

• Group Policy Object administrative template
• FedRAMP Ready: Citrix Workspace
• Citrix Cloud Government FedRAMP status

Automated sign-out on session disconnect

Beginning with this release, Citrix Workspace app can automatically sign out users when their session is disconnected. This feature is designed for kiosk environments to enhance security on shared devices.

You can enable this feature through Group Policy Object (GPO) or Global App Configuration service (GACS).

Using Group Policy Editor:

To enable the automatic sign out of users when their session is disconnected through GPO, do the following:

1. Open the Citrix Workspace app GPO administrative template by running gpedit.msc.

2. Under the Computer Configuration node, go to Administrative Templates > Citrix Workspace > Security preferences and select Log off user on session disconnect.

   

3. Select the Enabled checkbox.

4. Click OK.

Using GACS:

To enable the automatic sign out of users when their session is disconnected through GACS, do the following:

1. Sign in to citrix.cloud.com with your credentials.

   Note:

   Refer to the Sign Up for Citrix Cloud article for step-by-step instructions to create a Citrix Cloud account.

2. Upon authentication, click the menu button in the top left corner and select Workspace Configuration. The Workspace Configuration screen appears.

3. Click App Configuration > Citrix Workspace app.

4. Select the Windows checkbox.

5. You can now update the settings under Security preferences > Log off user on session disconnect.

For more information, see the Global App Configuration service documentation.

ADMX file import support for Intune

Citrix Workspace app now supports the import of ADMX administrative template files in Microsoft Intune. This enhancement enables easier policy configuration and management for Workspace app deployments through Intune.

Modular Browser Content Redirection

Starting with the Citrix Workspace app 2508 for Windows, the Browser Content Redirection (BCR) component is now managed as a modular component, separate from the main Citrix Workspace app installer.

This new modular and evergreen model allows the Browser Content Redirection component to be updated independently and uninstalled independently. This feature provides the following key benefits:

• Enhanced security: The BCR Chromium Embedded Framework component can receive security patches and updates as soon as they are available, without waiting for a full Citrix Workspace app release.
• Simplified Management: Customers no longer need to update entire Citrix Workspace app to receive the latest Browser content redirection features.
• Accelerated Innovation: Faster deployment of new BCR features, enhancements, and bug fixes is now possible, delivering continuous value to customers

To ensure a consistent user experience, the Modular BCR component is installed by default in Citrix Workspace app.

Installation and management:

When you install or upgrade to Citrix Workspace app 2508 or later, the installer includes the latest BCR component and installs it by default. No additional action is needed to install the BCR component.

For environments that do not use Browser Content Redirection, you can prevent its installation using the ADDLOCAL command-line switch during setup. When specifying ADDLOCAL components, do not include “BCR Client” to prevent BCR installation. For more information, see the Install and Uninstall section.

Manual installation and uninstallation:

• To install: If you exclude the BCR component during initial setup, you can install it anytime by downloading the standalone installer from the Citrix Downloads page.
• To uninstall: The BCR component can be uninstalled separately from Citrix Workspace app anytime by uninstalling the Citrix Browser Content Redirection Plug-in from the Windows Settings > Apps >Installed Apps section.

Automatic updates:

Once the modular and evergreen BCR component is installed, it keeps itself up-to-date automatically. The component periodically checks for new versions and silently installs them in the background. This automatic update ensures you always have the latest features and security updates without manual upgrades.

Note:

Once you upgrade Citrix Workspace app to 2508 or later Current Releases, the BCR experience is consistent across releases. There is only one BCR package regardless of Current Release or LTSR.

Upgrading to Citrix Workspace app 2508:

The transition from the older, integrated BCR is designed to be seamless. When you upgrade an existing Citrix Workspace app version to 2508 or later, the installer automatically replaces the old component with the new modular version. Users continue to have Browser Content Redirection functionality without any change to their experience.

Microsoft Teams plugin automatic installation

The Microsoft Teams plugin is a key client-side component required for Microsoft Teams SlimCore Optimization. Starting with Citrix Workspace app version 2508, this plugin is automatically installed during fresh installations and upgrades, including auto-updates. This enhancement ensures seamless Microsoft Teams optimization functionality for users.

For more information, see Install Third Party plug-ins

Zoom 64-bit plug-in management support

Zoom has announced that Version 6.2.10 is the last version to support a 32-bit plugin. For more information, see Zoom documentation.

Starting from 2508 version onwards, Citrix Workspace app installs the Zoom plug-in management based on the endpoint architecture. If endpoint OS is 64-bit, then Citrix Workspace app installs 64-bit plugin management and keep it updated through auto-update service.

uberAgent add-on support for managed devices in Citrix Workspace app

The uberAgent add-on delivers advanced monitoring and diagnostics for Citrix Workspace app, providing detailed insights into user experience and application performance. This integration is available exclusively on managed devices, streamlining deployment and reducing administrative overhead.

Command-line Installation:

• Use /InstallUberAgent to install or upgrade the uberAgent plugin.
• Use /InstallUberAgent /SkipUberAgentUpgrade to install the plugin without upgrading it if uberAgent is already present. This option is ideal for VDAs or devices where uberAgent deployment is managed separately from Citrix Workspace app.

Enhanced background blur persistence for webcam

Starting with version 2508, the background blur setting persists between sessions and reconnects. Citrix Workspace app remembers your preference automatically. You can enable the background blur feature by navigating to Preferences > Connections and select Enable background blur.

Your background blur setting remains active across all future sessions until you change it.

Enhanced keyboard layout settings notification

Starting with this release, the keyboard layout settings UI displays a warning that informs you that a session relaunch is required for changes to take effect.

License telemetry upload using Citrix Workspace app

With this release, you can upload license telemetry data to Citrix Analytics Service through client connections when the license server cannot reach Citrix Analytics service directly.

When your license server loses connectivity to Citrix Analytics service, the feature automatically routes telemetry data through the Virtual Desktop Agent (VDA) and client connection. This ensures continuous license reporting regardless of Customer Experience Improvement Program (CEIP) settings.

Benefits:

• Maintains uninterrupted license telemetry reporting
• Helps preserve compliance requirements
• Provides consistent usage analytics for your Citrix environment
• Works independently of CEIP configuration

Enable noise suppression

Starting with the 2508 version, Citrix Workspace app now offers improved audio redirection with enhanced noise suppression. This feature reduces background noise, ensuring clearer and more accurate speech, improving the overall communication experience.

Note:

This feature is disabled by default.

To enable this feature, do the following:

1. Navigate to the Preferences > Connections section. The Noise Suppression screen appears.

   

2. Select one of the following levels:

   • None: This level is the default setting and doesn’t use or affect resource consumption.
   • Low: Noise reduction is minimal and uses the least resource consumption.
   • High: Noise reduction is applied at maximum intensity with the best performance and uses higher resource consumption than the Low setting.

3. Click OK. The selected configuration is applied.

Note:

Changes apply only to the current session and reset once the session ends.

Browser Profile Sharing in Browser Content Redirection (Technical Preview)

Browser Content Redirection (BCR) now offers a streamlined user experience with the new Profile Sharing feature, enabling VDA-side authentication and cookie sharing. This enhancement eliminates redundant logins, boosting productivity by maintaining authentication and cookie persistence across BCR sessions, even after the BCR window is closed. This seamless experience further enhances security by ensuring authentication originates from the VDA, not the client.

Example:

• Previous experience: Previously, opening an authenticated page within BCR required users to re-enter their credentials each time, breaking SSO persistence. SSO was only maintained while the BCR window remained open. Closing and reopening the window forced users to repeat the login process.
• New experience: With Profile Sharing, users are no longer prompted for credentials. SSO is seamlessly preserved from the VDA browser, providing a significantly improved and uninterrupted experience.

For information on versions from which Tech Preview is available, see Citrix Virtual Apps and Desktops documentation.

HDX graphics superresolution upscaling (Preview)

Starting with the Citrix Workspace app for Windows 2508 version, the HDX graphics superresolution upscaling feature enhances session performance and significantly reduces bandwidth consumption.

HDX Graphics Superresolution upscaling seamlessly downscales video regions on the Virtual Desktop Agent (VDA) and utilizes a compatible endpoint Graphics Processing Unit (GPU) to upscale them back to their original resolution without noticeable quality degradation or performance impact.

For more information, see HDX graphics superresolution upscaling (Preview).

Version upgrade for Chromium Embedded Framework

The version of the Chromium Embedded Framework (CEF) used in the Browser Content Redirection (BCR) is upgraded to 137. This upgraded version includes fixes for known security vulnerabilities.

Citrix Enterprise Browser

This release includes Citrix Enterprise Browser version 139.1.1.18, based on Chromium version 139. For more information about the Citrix Enterprise Browser, see the Citrix Enterprise Browser documentation.

App Protection support for ARM64 on Windows

Starting with Citrix Workspace app for Windows version 2508, App Protection is supported on ARM64 devices running Citrix Workspace app in emulated mode. This update ensures that users on ARM64 machines can seamlessly use App Protection features.

App Protection Health Checker

Starting with version 2508, Citrix Workspace app for Windows includes the App Protection Health Checker as part of the Configuration Checker available in Advanced Preferences to help users identify App Protection issues.

The App Protection Health Checker is enabled by default for version 2508.

Fixed issues

• When only a Citrix Enterprise Browser update is available, selecting Close and update in the auto-update popup might not close or disconnect the ICA® session. However, the update continues in the background. [RFWIN-38650]

• If GACS settings were configured on the gateway URL, the settings were retrieved only when adding the account for the first time. [RFWIN-38957]

• HDX™ sessions might freeze intermittently after a few minutes when the client machine has non-existent or non-responsive printers. [CVADHELP-23427]

• Browser Content Redirection (BCR) content might display a “Redirecting… You’re being redirected to the page” message after expanding the Citrix session to full-screen on 2K and 4K monitors. [HDX-71373]

• When the DPI of the primary monitor differs from the secondary monitor, the “Custom layout” window might appear misaligned or partially hidden. Clicking the “Custom Layout” window restores it to its normal state. [HDX-90120]

• When a Local App Access (LAA) session disconnects, you might not receive the “Disconnect Desktop Window” notification. [HDX-89783]

• When Citrix Workspace app is installed as a non-admin user and Local App Access (LAA) is enabled, the toolbar might intermittently disappear in Windowed mode. In Fullscreen mode, the fly-out options of the toolbar might vanish quickly. [HDX-89785]

• When a Browser Content Redirection (BCR) window gets overlapped by a non-BCR browser window, the BCR window might fail to come to the foreground. [HDX-89115]

• Client Selective Trust settings might not function properly for desktop launches through webhelper. [CVADHELP-28496]

• On a client PC with USB device redirection enabled, connecting a composite USB device configured for split interfaces might initially display only the parent device, with child devices appearing in a subsequent notification. As a workaround, wait for the subsequent notification and select the child device for redirection. [HDX-86143]

• When a USB device is connected to a client PC with USB device redirection enabled and a session is launched, the notification indicating the device can be redirected might remain visible after the session disconnects. Although users can interact with the notification, no action is performed as the session is already closed. The notification automatically times out and disappears after a short duration. [HDX-86888]

• You might experience difficulty moving the Desktop Viewer toolbar smoothly on touch screen clients when using fingers or a stylus. Additionally, the Desktop Viewer toolbar might disappear when moved with a stylus. [HDX-86561]

• You might notice visual artifacts when transitioning the DesktopViewer toolbar between vertical and horizontal edges during a VDA session. [HDX-83654]

• The Start button in the Shortcuts dropdown menu of the DesktopViewer Toolbar might not function as expected. This issue occurs only when you are using Citrix Workspace app session in windowed mode. [HDX-82299]

• When using the multiple Virtual Desktops feature in Windows and opening an ICA session on one desktop, the new DesktopViewer toolbar might appear in preview for all virtual desktops. [HDX-83063]

• Files might be downloaded from redirected sites to the endpoint when using Browser Content Redirection. This issue occurs from Citrix Workspace app 2402 CU1 hotfix 3. [CVADHELP-28842]

• Single sign-on to published desktops might fail to launch the Virtual Delivery Agent (VDA) session when the endpoint is registered with Azure Active Directory, the VDA is in hybrid mode (Azure Active Directory and on-premises Active Directory), and the username is passed in AzureAD/usernameInUPN format during launch. [CVADHELP-28294]

• When switching between “PC Screen Only” and “Extended” mode in a multi-monitor scenario with High DPI set to Yes on the client DPI settings, seamless applications might not render correctly and users might see partial or full black patches on the application. [CVADHELP-28210]

• When switching to seamless mode with published applications, the endpoint taskbar might become unresponsive. [CVADHELP-25670]

• Minimizing and maximizing a window on Windows 11 might cause unexpected visual artifacts, such as black areas appearing on the top and left borders of the application. [CVADHELP-27418]

• Certain HTTPS URLs might not be redirected to the client when using the Host to client redirection feature. [CVADHELP-28473]

• Creating new non-seamless windows might stop when the number of non-seamless session windows exceeds certain number of windows. [CVADHELP-27796]

• On endpoints where VBScript is disabled or failed, Citrix Workspace app for Windows installation might fail. This fix removes the VBScript dependency in the installer, ensuring successful installation regardless of VBScript availability. [CVADHELP-28493]

• You might experience long delays when connecting to the store URL due to shortcut enumeration. [CVADHELP-28613]

• Legacy email discovery might fail with a certificate not trusted error when the email domain and gateway URL domain do not match. [CVADHELP-28462]

• The BCR page might flicker when you click outside the browser window (such as on the taskbar or Start menu) and then click back into it. [HDX-92247]

• When Persistent ICA is enabled, Citrix Workspace app might launch multiple instances of the same application simultaneously. [CVADHELP-29100]

Known issues

• If desktop lock feature is enabled in version 2503.2 through command line, desktop lock might not work for standard users after upgrade. This issue doesn’t occur when desktop lock is enabled using GPO. As a workaround, during upgrade, enter the “AllowDesktopLockOnMachine EnableDesktopLockForAllStandardUsers” in the command line to re-enable desktop lock. For more information, see Enable Desktop Lock feature using command line parameters. [RFWIN-39160]

• Copying and pasting .zip files and directories from the client to the VDA might fail. This issue occurs only when the DDC policy for Restrict Session Clipboard Write is active and the Session Clipboard Write-allowed formats policy contains CF_FILE. As a workaround, do one of the following:

  • Add CF_HDROP format to the Session Clipboard Write-allowed formats policy. Or,
  • Enable the Drag and Drop policy so users can drag and drop files from the client to the VDA instead of copying and pasting. [HDX-92154]