XenApp and XenDesktop

Fixed issues

Citrix Director

  • In scenarios with poor network connectivity, when you use Director in an environment containing large sites, the IIS worker process (w3wp.exe) might consume high memory. The Director page stops loading. [CVADHELP-14959]

  • After uninstalling a VDA, the namespaces for Citrix Windows Management Instrumentation (WMI) might remain. [CVADHELP-14965]

  • On the Historic Machine Utilization page, data in the Top 10 Processes table might not be displayed. This message appears:

    Process data collection is disabled on this machine. Enable process monitoring policy to start collection.

    [CVADHELP-15893]

  • On the Director > Trends > Logon Performance > Export Report page, when you generate and export a report, incorrect brokering time values might appear in the report. The issue occurs with the German language report where . is replaced with ,. [CVADHELP-16097]

Citrix Policy

  • When you upgrade the Citrix Group Policy Engine from Version 1.7 to Version 7.15, the Printer assignments policy under Citrix User Policies might not be displayed. [CVADHELP-15608]

Citrix Studio

  • While you are creating a hosting connection to Azure, attempts to create a service principal might fail with an ADSTS700016 error. [CVADHELP-16219]

Delivery Controller

  • Some published applications might cause application enumeration to fail. The issue occurs when a corrupted application icon is present in an .exe file. [CVADHELP-13133]

  • In a large Citrix Virtual Apps and Desktops environment, stored procedures for Monitor database grooming might not work. The issue occurs when the size of the Monitor database is large. [CVADHELP-13287]

  • Delivery Controllers might receive the following Local Host Cache Error 505 in the event log: Unknown Error. [CVADHELP-14428]

  • After a VDA reports a full load due to high memory usage, the load index value might remain at 10,000 even if the memory usage drops to a low level. [CVADHELP-14563]

  • Attempts to create a Machine Creation Services (MCS) catalog in Azure using PowerShell might fail with this error message:

    Could not locate item with path=Citrix.AzureRmPlugin.InventoryItemPath.

    The issue occurs when you use Shared Azure subscriptions in conjunction with narrow scope service principals. [CVADHELP-14640]

  • When you log on to a new session using Citrix Director, the logon might not appear on the Average Logon Duration graph available on the Logon Performance tab under Trends. However, the logon appears in the Logon Duration by User Session form. [CVADHELP-14740]

  • vSAN storage policies might not be applied on a virtual machine created using Machine Creation Services (MCS). The issue occurs when the version of a disk attached to the machine is incorrect. [CVADHELP-14935]

  • When you select Machine Catalogs in the Studio navigation pane, Studio might fail to display the list of catalogs. This error message appears:

    You cannot see any catalogs.

    The issue occurs because Studio cannot retrieve the list of objects by using the Get-ProvSchemeMasterVMImageHistory PowerShell command. [CVADHELP-15211]

  • Attempts to create a Machine Creation Services (MCS) catalog using VMware vSphere 7.0 might fail. [CVADHELP-15237]

  • This fix addresses performance issues you might experience with Delivery Controller (XML service) in slow active directory environments.

    To enable the fix, set the following registry key:

    HKEY_LOCAL_MACHINE\Software\Citrix\DesktopServer

    Or

    HKEY_LOCAL_MACHINE\Software\Policies\Citrix\DesktopServer

    Name: DisableGetPasswordExpiryInfo

    Type: DWORD

    Value: 1

    [CVADHELP-15536]

  • This fix provides Microsoft System Center Virtual Machine Manager (SCVMM) 2019 support for Machine Creation Services (MCS). [CVADHELP-15779]

Metainstaller

  • When installing a VDA, additional components such as Personal vDisk might be installed even though you did not select them in the GUI. [CVADHELP-15572]

  • When upgrading a VDA, you cannot disable the Optimize performance feature on the Features page. Also, you cannot enable other features on that page. [CVADHELP-14560]

Profile Management

  • With the Profile streaming policy enabled in Profile Management, attempts to download a file in Internet Explorer 11 might fail. [CVADHELP-12970]

  • When you navigate to Control Panel > System and Security > System > Change settings > Advanced > User Profiles > Settings, the profile for the logged-in user shows a question mark for the Size field. The other user profiles show the correct sizes. [CVADHELP-13993]

  • When you add Appdata\local\temp to the Exclusion list - directories, Profile Management does not create the Appdata\local\temp folder in the user profile and runtime errors occur for some applications such as Microsoft Outlook. The issue occurs during second or subsequent logons with the Delete locally cached profiles on logoff policy enabled. [CVADHELP-14054]

  • Profile Management does not synchronize the subkeys of a registry key present in the Registry inclusion list. For example, when you add Software\Citrix to the Registry inclusion list, only HKEY_CURRENT_USER\SOFTWARE\Citrix is saved in the user store. The subkeys are not stored. [CVADHELP-14815]

  • When a folder on the Folders to Mirror list is not present in the user store during logons, the local user profile is deleted. [CVADHELP-15248]

  • With Desktop added to the Exclusion list – directories policy, an error might occur when users attempt to save changes in a published application or desktop. [CVADHELP-15792]

Provisioning Services

Provisioning Services 7.15 LTSR CU7 provides specific information about the updates in this release.

StoreFront

  • On iPadOS 13 or later, StoreFront webpages might freeze when users attempt to log on. The issue occurs when the Enable classic experience policy is enabled for your StoreFront deployment. [CVADHELP-14905]

  • When a custom config file is present in the store folder, the custom file might replace the content of the web.config file in the store folder. The issue occurs when you upgrade StoreFront. [CVADHELP-13485]

VDA for Desktop OS

Session/Connection

  • When several USB devices are redirected to a session, one of them might not work correctly. [CVADHELP-12516]

  • The default audio device in a session might not be the same as the default one on a user device. In the session, the first device on the audio device list becomes the default. [CVADHELP-13324]

  • In a site where XenApp and XenDesktop Version 7.15 LTSR Cumulative Update 4 runs on Microsoft Windows Server 2016, when you attempt to launch a published application, the application session might become unresponsive. This error message appears:

    Please wait for Local Session Manager

    [CVADHELP-13967]

  • If SAS notification is enabled, a user with multiple monitors connecting to an existing session at the console might find the monitor layout is not restored correctly. For example, if the right monitor is 1 and selected as the main monitor and the left monitor is 2, the user might find the positions swapped when reconnecting. This issue affects only RemotePC users with a physical desktop. This is due to incompatibility between two features.

    To enable the fix, set the following registry key:

    HKEY_LOCAL_MACHINE\SOFTWARE\Citrix\Graphics

    Name: UseSDCForLocalModes

    Type: DWORD

    Value: 1

    [CVADHELP-14249]

  • VDAs might unregister intermittently when IPv6 is enabled. [CVADHELP-14847]

  • This fix provides a timer to send a small datagram over a UDP connection to keep the connection alive between the host and the client.

    To enable the fix, set the registry key as follows:

    • For 32-bit systems

      HKEY_LOCAL_MACHINE\SOFTWARE\Citrix\Audio

      Name: KeepAliveTimer

      Type: DWORD

      Value: Indicates the wait time interval (in seconds) between keep-alive messages. If left empty or set to 0, no keep-alive packets are sent and the keep-alive feature does not work. The recommended value is 15.

    • For 64-bit systems

      HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Citrix\Audio

      Name: KeepAliveTimer

      Type: DWORD

      Value: Indicates the wait time interval (in seconds) between keep-alive messages. If left empty or set to 0, no keep-alive packets are sent and the keep-alive feature does not work. The recommended value is 15.

      [CVADHELP-15122]

  • With the CtxUvi Hooking driver disabled, event logs might not be generated. The issue occurs when available system resources are low. [CVADHELP-15241]

  • This fix provides support to a new feature that lets you configure multiple forest deployments without enabling NTLM authentication on VDAs. However, the previous feature for enabling NTLM authentication is reserved for other deployments without trusts. A registry entry named SupportMultipleForestDdcLookup is added to avoid unwanted enabling of NTLM authentication on VDAs. (NTLM is less secure than Kerberos.) You can use SupportMultipleForestDdcLookup instead of the SupportMultipleForest entry. You can continue to use SupportMultipleForest for backward compatibility. The SupportMultipleForestDdcLookup registry key determines how VDAs perform delivery controller lookups. For more information, see Deploy in a multiple Active Directory forest environment. [CVADHELP-15467]

  • When a VDA attempts to register with a Delivery Controller, the broker agent performs an initial DNS lookup in the local domain. This lookup ensures that the Delivery Controller is reachable. When the DNS lookup fails, the broker agent falls back to performing top-down queries in Active Directory, repeatedly performing searches in all domains. If the address of the Delivery Controller is invalid (for example, the administrator typed the FQDN incorrectly when installing the VDA), the query operations can cause DDoS-like results on the domain controller. For more information, see Controller search during VDA registration. [CVADHELP-15484]

  • With the time zone policy set to Use server time zone, the client-side time zone might still get redirected on a VDA through a user session. [CVADHELP-15628]

  • With the legacy graphics mode policy enabled, a gray screen might appear when you launch a session. This issue occurs with VDA version 7.15.6000. [CVADHELP-15841]

  • On Server VDI VDAs, the power button on the Start menu might not offer the Disconnect option. [CVADHELP-16595]

System Exceptions

  • After you upgrade a VDA from Version 7.15 Cumulative Update 5 to Cumulative Update 6 or Version 2003, the Group Policy engine (CseEngine.exe) service might exit unexpectedly. [CVADHELP-14515]

  • The Citrix Audio Redirection Service (CtxAudioSvc) might exit unexpectedly with an Event ID 1000 and an exception code 0x0c0000005. The issue occurs because of the faulting module, CtxVorbisDmo64.dll. [CVADHELP-14898]

  • VDAs might experience a fatal exception on picadm.sys and display a blue screen with bug check code APC_INDEX_MISMATCH (1). The issue occurs when you attempt to access a mapped client drive. [CVADHELP-15003]

  • VDAs might experience a fatal exception on tdica.sys and display a blue screen with bug check code 0x1000007e. The issue occurs when you launch a session through Citrix Workspace app for HTML5. [CVADHELP-15220]

  • VDAs might experience a fatal exception on picadm.sys and display a blue screen with bug check code 0x93 (INVALID_KERNEL_HANDLE). [CVADHELP-15326]

  • When you attempt to view embedded Windows Media files from a web application, Internet Explorer might exit unexpectedly. The issue occurs because of the faulting module, HostMMTransport.dll. [CVADHELP-15598]

VDA for Server OS

Session/Connection

  • When several USB devices are redirected to a session, one of them might not work correctly. [CVADHELP-12516]

  • In a site where XenApp and XenDesktop Version 7.15 LTSR Cumulative Update 4 runs on Microsoft Windows Server 2016, when you attempt to launch a published application, the application session might become unresponsive. This error message appears:

    Please wait for Local Session Manager

    [CVADHELP-13967]

  • With the Allow the audio sandbox to run policy enabled, audio might not work in Google Chrome you open through Citrix Virtual Apps and Desktops. [CVADHELP-14784]

  • License statistics might not be consistent among sites. For example, there can be an apparent discrepancy between licenses consumed by Citrix Concurrent User (CCU) and licenses assigned to unique users for multiple sites. [CVADHELP-14950]

  • This fix provides a timer to send a small datagram over a UDP connection to keep the connection alive between the host and the client.

    To enable the fix, set the registry key as follows:

    • For 32-bit systems

      HKEY_LOCAL_MACHINE\SOFTWARE\Citrix\Audio

      Name: KeepAliveTimer

      Type: DWORD

      Value: Indicates the wait time interval (in seconds) between keep-alive messages. If left empty or set to 0, no keep-alive packets are sent and the keep-alive feature does not work. The recommended value is 15.

    • For 64-bit systems

      HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Citrix\Audio

      Name: KeepAliveTimer

      Type: DWORD

      Value: Indicates the wait time interval (in seconds) between keep-alive messages. If left empty or set to 0, no keep-alive packets are sent and the keep-alive feature does not work. The recommended value is 15.

      [CVADHELP-15122]

  • With the CtxUvi Hooking driver disabled, event logs might not be generated. The issue occurs when available system resources are low. [CVADHELP-15241]

  • Microsoft Teams might fail to load in optimized mode when a clock drift is created. This drift translates into an invalid or expired Citrix certificate. As a workaround, change the HTML5 Video Redirection Service (txHdxWebSocketService) startup type to Automatic (Delayed Start) instead of the default Automatic. [CVADHELP-15298]

  • This fix provides support to a new feature that lets you configure multiple forest deployments without enabling NTLM authentication on VDAs. However, the previous feature for enabling NTLM authentication is reserved for other deployments without trusts. A registry entry named SupportMultipleForestDdcLookup is added to avoid unwanted enabling of NTLM authentication on VDAs. (NTLM is less secure than Kerberos.) You can use SupportMultipleForestDdcLookup instead of the SupportMultipleForest entry. You can continue to use SupportMultipleForest for backward compatibility. The SupportMultipleForestDdcLookup registry key determines how VDAs perform delivery controller lookups. For more information, see Deploy in a multiple Active Directory forest environment. [CVADHELP-15467]

  • When a VDA attempts to register with a Delivery Controller, the broker agent performs an initial DNS lookup in the local domain. This lookup ensures that the Delivery Controller is reachable. When the DNS lookup fails, the broker agent falls back to performing top-down queries in Active Directory, repeatedly performing searches in all domains. If the address of the Delivery Controller is invalid (for example, the administrator typed the FQDN incorrectly when installing the VDA), the query operations can cause DDoS-like results on the domain controller. [CVADHELP-15484]

  • An invalid XenApp session on a VDA for Server OS might start when disconnecting and reconnecting a remote desktop session. The invalid session remains until you restart the VDA. [CVADHELP-16453]

System Exceptions

  • The Service Host (svchost.exe) process that hosts the Windows audio service might exit unexpectedly within a user session. The issue occurs because of a memory leak. [CVADHELP-13687]

  • VDAs might experience a fatal exception on picadm.sys and display a blue screen with bug check code APC_INDEX_MISMATCH (1). The issue occurs when you attempt to access a mapped client drive. [CVADHELP-15003]

  • VDAs might experience a fatal exception on tdica.sys and display a blue screen with bug check code 0x1000007e. The issue occurs when you launch a session through Citrix Workspace app for HTML5. [CVADHELP-15220]

  • VDAs might experience a fatal exception on picadm.sys and display a blue screen with bug check code 0x93 (INVALID_KERNEL_HANDLE). [CVADHELP-15326]

  • When you attempt to view embedded Windows Media files from a web application, Internet Explorer might exit unexpectedly. The issue occurs because of the faulting module, HostMMTransport.dll. [CVADHELP-15598]

  • When you attempt to reconnect to a multiport-enabled TCP session launched from Citrix Workspace app for Linux, the VDA might exit unexpectedly. [CVADHELP-15674]

Virtual Desktop Components – Other

  • When you launch an App-V application from a VDA hosting many App-V applications, the VDA might deregister. The issue occurs when the time it takes to process associated policy files is long. [CVADHELP-12592]

  • This fix addresses a security vulnerability in an underlying component. For more information, see Knowledge Center article CTX285059. [CVADHELP-14755]

Fixed issues