Product Documentation

What's new

Apr 12, 2018

About this release

This XenApp and XenDesktop release includes new versions of the Windows Virtual Delivery Agents (VDAs) and new versions of several XenApp and XenDesktop core components. You can:

  • Install or upgrade a XenApp or XenDesktop Site

Use the ISO for this release to install or upgrade all the core components and VDAs. Installing or upgrading to the latest version allows you to use all the latest features.

  • Install or upgrade VDAs in an existing Site

If you have a XenApp or XenDesktop deployment, and aren't ready to upgrade your core components, you can still use several of the latest HDX features by installing (or upgrading to) a new VDA. Upgrading only the VDAs is often helpful when you want to test enhancements in a non-production environment. 

For instructions:

XenApp and XenDesktop 7.17

This product release includes the following new, modified, and enhanced features.

Install and upgrade VDAs: additional restart

An additional restart occurs when upgrading a VDA to version 7.17 (or a later supported version). This restart is required after the installer removes one of the MSIs (ICA WS/Ts) and then installs the new version of that MSI.

Install and upgrade VDAs: VDA supportability tools option

When you install a VDA, you can now choose whether to install a VDA supportability MSI that includes Citrix tools. You can use the tools to check items such as the overall health of your VDA and connection quality. In the installer's graphical interface, select or clear a check box on the Additional Components page. In the command line interface, use the /exclude "Citrix Supportability Tools" to prevent installation of the MSI that contains the tools.

Install and upgrade VDAs: Removal of PDF printer driver option

The VDA installers no longer offer options to control Universal Print Server PDF printer driver installation. The PDF printer driver is now always installed automatically. When you upgrade to the 7.17 VDA (or a later supported version), any previously installed Citrix PDF printer driver is automatically removed and replaced with the latest version.

Azure Managed Disks

Azure Managed Disks are now used by default for MCS-provisioned VMs in Azure Resource Manager environments. Optionally, you can use conventional storage accounts. For details, see Microsoft Azure Resource Manager virtualization environments.

Launch applications from a published desktop

When users launch a published application from within a published desktop, you can use PowerShell to control whether the application is launched in that desktop session or as a published application in the same Delivery Group. By default, the application in the published desktop session is launched. For details, see Control local launch of applications on published desktops.

Federated Authentication Service

The Citrix Federated Authentication Service released with XenApp and XenDesktop 7.17 stores its configuration data, including user and registration authority certificates, in an embedded database. In previous releases, this data was stored in the registry. When upgrading to this release, all Federated Authentication Service configuration data except user certificates is migrated from the registry to the embedded database. Therefore, we recommend that before upgrading, you erase all user certificates with the following FAS PowerShell command:

Add-PSSnapin Citrix.a*


PIV smart card authentication support. Apart from the form based and Integrated Windows authentication of users, Director now supports Personal Identity Verification (PIV) based smart card authentication. This feature is useful for organizations and government agencies that use smart card based authentication for access control.

To log on to Director, insert your smart card into the smart card reader, and enter your smart card token. After you are authenticated, you can access Director without having to provide additional credentials on the Director logon page.

For more information on the configuration required for smart card based authentication, see Configure PIV smart card authentication

For more information on using Director with smart card based authentication, see the Use Director with PIV based smart card authentication section in the Director article.

Virtual Delivery Agents (VDAs) 7.17

Version 7.17 of the VDA for Server OS and the VDA for Desktop OS include the following enhancements:

Browser content redirection blacklist

You can create a blacklist policy along with the existing Access Control List (ACL) policy. The URLs in this blacklist policy aren't redirected. For example, you add a company's URL to the whitelist, but you don't want a specific URL at the company website to be redirected. Add that specific URL to the blacklist and browser content redirection doesn't occur for that URL. For more information, see Browser content redirection

Browser content redirection video fallback prevention

If client redirection fails, you can prevent fallback of HTML5 videos to the server side. Use the existing Windows media fallback prevention policy to prevent server side rendering of video elements. Setting this policy suppresses only the video elements and not the HTML content of the page. The HTML content is rendered on the server. For more information, see Browser content redirection.

Citrix webcam video compression for 64-bit applications.

Support for 64-bit Citrix webcam video compression is available.
Important: The 64-bit application support requires H.264 compression. 

Selective use of the H.264 hardware codec for actively changing regions with NVIDIA GPUs

This feature allows the use of the video codec for actively changing regions in combination with NVIDIA GPUs using NVENC hardware encoding.

Lossless compression codec (MDRLE)

A higher compression ratio MDRLE encoder is added to Thinwire. The MDRLE codec consumes less bandwidth in typical desktop sessions than the 2DRLE codec. If the codec is supported on the server and client sides, it's used instead of 2DRLE. For more information, see "Encoding methods" in the Thinwire article.

Show or hide the remote language bar

The language bar displays the preferred input language in an application session. If this feature is enabled (the default), you can show or hide the language bar from the Advanced Preferences > Language bar UI in Citrix Receiver for Windows. You can disable this feature using a registry setting on VDA side. For more information, see "Show or hide the remote language bar" in the HDX article and Improve the user experience.

Text-based session watermarks to deter and track data theft

This feature allows you to configure textual watermarks containing information to help track data theft. This traceable information appears on the session desktop as a deterrent to those using photographs and screen captures to steal data. 

Also, see the install and upgrade changes described in the previous section, XenApp and XenDesktop 7.17.

After upgrading your VDAs to this version (from version 7.9 or later), you do not need to update the machine catalog's functional level. The default (7.9 (or newer ...)) remains the current functional level. For information, see VDA versions and functional levels.

Citrix Licensing 11.14

Citrix Licensing 11.14 contains new features and fixed and known issues.