Product Documentation

Policy Settings Reference

Oct 09, 2015

Policies contain settings that are applied when the policy is enforced. You configure these settings using the Delivery Services Console or the Local Group Policy Editor, depending on whether or not you use Active Directory in your XenApp environment.

The descriptions for each policy setting include the following information:
  • The name of the policy setting
  • The Citrix products to which the policy setting applies
  • The additional settings, if applicable, required to enable a particular feature
  • Other settings that are similar to the policy setting in question, if applicable

Policy Settings: Quick Reference Table

The following tables present settings you can configure within a policy. Find the task you want to perform in the left column, then locate its corresponding setting in the right column.

Graphics & Multimedia
Task: Use this policy setting:
Control the amount of memory allocated for displaying graphics in a session Display memory limit
Control how a user's display degrades in response to memory limits and whether or not to notify the user
  • Display mode degrade preference
  • Notify user when display mode is degraded
Control compression of images for use in sessions of limited bandwidth
  • Lossy compression level
  • Lossy compression level threshold value
  • Progressive compression level
  • Progressive compression threshold value
Control whether or not Flash content is rendered in sessions Flash acceleration
Control whether or not Web sites can display Flash content when accessed in sessions
  • Flash server-side content fetching whitelist
  • Flash URL blacklist
Desktop UI
Task: Use this policy setting:
Control whether or not Desktop wallpaper is used in users' sessions Desktop wallpaper
View window contents while a window is dragged View window contents while dragging
User Devices
To limit bandwidth used for: Use this policy setting:
Client audio mapping
  • Audio redirection bandwidth limit, or
  • Audio redirection bandwidth limit percent
Cut-and-paste using local clipboard
  • Clipboard redirection bandwidth limit, or
  • Clipboard redirection bandwidth limit percent
Devices connected to a local COM port
  • COM port redirection bandwidth limit, or
  • COM port redirection bandwidth limit percent
Access in a session to local client drives
  • File redirection bandwidth limit, or
  • File redirection bandwidth limit percent
Printers connected to the client LPT port
  • LPT port redirection bandwidth limit, or
  • LPT port redirection bandwidth limit percent
Custom devices connected to the client through OEM virtual channels
  • OEM channels bandwidth limit, or
  • OEM channels bandwidth limit percent
Client session Overall session bandwidth limit
Printing
  • Printer redirection bandwidth limit, or
  • Printer redirection bandwidth limit percent
TWAIN device (such as a camera or scanner)
  • TWAIN device redirection bandwidth limit, or
  • TWAIN device redirection bandwidth limit percent
Audio
Task: Use this policy setting:
Control whether or not to allow audio input from microphones on the user device Client microphone redirection
Control audio quality on the user device Audio quality
Control audio mapping to speakers on the user device Client audio redirection
User drives and devices
Task: Use this policy setting:
Control whether or not drives on the user device are connected when users log on to the server Auto connect client drives
Control how drives map from the user device Client drive redirection
Improve the speed of writing and copying files to a client disk over a WAN Use asynchronous writes
Control whether or not user devices attached to local COM ports are available in a session Client COM port redirection
Control whether or not client printers attached to local LPT ports are available in a session Client LPT port redirection
Control whether or not users' local hard drives are available in a session
  • Client fixed drives, and
  • Client drive redirection
Control whether or not users' local floppy drives are available in a session
  • Client floppy drives, and
  • Client drive redirection
Control whether or not users' network drives are available in a session
  • Client network drives, and
  • Client drive redirection
Control whether or not users' local CD, DVD, or Blu-ray drives are available in a session
  • Client optical drives, and
  • Client drive redirection
Control whether or not users' local removable drives are available in a session
  • Client removable drives, and
  • Client drive redirection
Control whether or not users' TWAIN devices, such as scanners and cameras, are available in a session and control compression of image data transfers
  • Client TWAIN device redirection
  • TWAIN compression level
Control cut-and-paste data transfer between the server and the local clipboard Client clipboard redirection
Control use of custom devices, such as an electronic pen (stylus) OEM channels
Printing
Task: Use this policy setting:
Control creation of client printers on the user device
  • Auto-create client printers, and
  • Client printer redirection
Allow use of legacy printer names and preserve backward compatibility with prior versions of the server Client printer names
Control the location where printer properties are stored Printer properties retention
Control whether print requests are processed by the client or the server Direct connections to print servers
Control whether or not users can access printers connected to their user devices Client printer redirection
Control installation of native Windows drivers when automatically creating client and network printers Automatic installation of in-box printer drivers
Control when to use the Universal Printer Driver Universal printing
Choose a printer based on a roaming user’s session information Default printer
Content redirection
Task: Use this policy setting:
Control whether or not to use content redirection from the server to the user device Host to client redirection
Time Zone Control
Task: Use this policy setting:
Control whether or not to use the server’s time zone instead of the client’s estimated local time zone Local Time Estimation
Control whether to use the server’s time zone or the client’s time zone Use local time of client
User Connections and Shadowing
Task: Use this policy setting:
Limit the number of sessions that a user can run at the same time Concurrent logon limit
Control whether or not shadowing is allowed Shadowing
Allow or deny permission for users to shadow connections
  • Users who can shadow other users
  • Users who cannot shadow other users
Single Sign-On
Task: Use this policy setting:
Identify which credential repository to use when using Single Sign-On Single Sign-On central store
Allow or prevent use of Single Sign-On Single Sign-On
Offline Applications
Task: Use this policy setting:
Allow or prevent offline application users to reconnect without reauthentication Offline app client trust
Allow or deny permission for users to access offline applications Offline app users
Security
Task: Use this policy rule:
Require that connections use a specified encryption level SecureICA minimum encryption level