Secure user sessions using DTLS

DTLS encryption is a fully supported feature starting with the 7.18 release. By default, this feature is enabled on the Linux VDA. For more information, see Transport Layer Security.

Enable DTLS encryption

Verify that adaptive transport is enabled

In Citrix Studio, verify that the HDX Adaptive Transport policy is set to Preferred or Diagnostic mode.

Enable SSL encryption on the Linux VDA

On the Linux VDA, use the enable_vdassl.sh tool to enable (or disable) SSL encryption. The tool is located at /opt/Citrix/VDA/sbin. For information about options available in the tool, run the /opt/Citrix/VDA/sbin/enable_vdassl.sh –h command.

Note:

Currently, the Linux VDA supports both DTLS 1.0 and DTLS 1.2. DTLS 1.2 requires Citrix Receiver for Windows 4.12, or Citrix Workspace app 1808 for Windows or later. If your client supports only DTLS 1.0 (for example, Citrix Receiver for Windows 4.11), set SSLMinVersion to TLS_1.0 and SSLCipherSuite to COM or ALL using the enable_vdassl.sh tool.

Secure user sessions using DTLS

In this article