Enforce trust relationship

Trusted server configuration identifies and enforces trust relations in Citrix Receiver for Windows connections.

When you enable Trusted server feature, Citrix Receiver for Windows specifies the requirements and decides if the connection to the server can be trusted or not. For example, a Citrix Receiver for Windows connecting to a certain address (such as (https://*.citrix.com) with a specific connection type (such as TLS) is directed to a trusted zone on the server

When you enable this feature, connected server resides in the Windows Trusted Sites zone. For instructions about adding servers to the Windows Trusted Sites zone, see the Internet Explorer online help.

To enable trusted server configuration using Group Policy Object administrative template

Pre-requisite:

Exit from the Citrix Receiver for Windows components including the Connection Center.

1. As an administrator, open the Citrix Receiver Group Policy Object administrative template by running gpedit.msc.
   1. To apply the policy on a single computer, launch the Citrix Receiver Group Policy Object administrative template from the Start menu.
   2. To apply the policy on a domain, launch the Citrix Receiver Group Policy Object administrative template using the Group Policy Management Console.
2. Under the Computer Configuration node, go to Administrative Templates > Classic Administrative Templates (ADM) > Citrix Components > Citrix Receiver > Network Routing > Configure trusted server configuration.
3. Select Enabled to force Citrix Receiver for Windows to perform region identification.
4. Select Enforce trusted server configuration. This forces the client to perform the identification using a trusted server.
5. From the Windows internet zone drop-down, select the client server address. This setting is applicable only to Windows Trusted Site zone.
6. In the Address field, set the client server address for trusted site zone other than Windows. You can use a comma-separated list.
7. Click OK and Apply.