Enforce trust relationship

Trusted server configuration identifies and enforces trust relations in Citrix Workspace app connections.

When you enable Trusted server, Citrix Workspace app specifies the requirements and decides if the connection to the server can be trusted or not. For example, a Citrix Workspace app connecting to a certain address (such as https://*citrix.com ) with a specific connection type (such as TLS) is directed to a trusted zone on the server

When you enable this feature, connected server resides in the Windows Trusted Sites zone. For instructions about adding servers to the Windows Trusted Sites zone, see the Internet Explorer online help.

To enable trusted server configuration using Group Policy Object administrative template


Exit from the Citrix Workspace app components including the Connection Center.

  1. As an administrator, open the Citrix Workspace app Group Policy Object administrative template by running gpedit.msc.
    • To apply the policy on a single computer, launch the Citrix Workspace Group Policy Object administrative template from the Start menu.
    • To apply the policy on a domain, launch the Citrix Workspace Group Policy Object administrative template using the Group Policy Management Console.
  2. Under the Computer Configuration node, go to Administrative Templates > Classic Administrative Templates (ADM) > Citrix Components > Citrix Workspace > Network Routing > Configure trusted server configuration.
  3. Select Enabled to force Citrix Workspace app to perform region identification.
  4. Select Enforce trusted server configuration. This forces the client to perform the identification using a trusted server.
  5. From the Windows internet zone drop-down, select the client server address. This setting is applicable only to Windows Trusted Site zone.
  6. In the Address field, set the client server address for trusted site zone other than Windows. You can use a comma-separated list.
  7. Click OK and Apply.

Enforce trust relationship

In this article