Workspace Citrix Mac

Posted on |



downloadWhy can't I download this file?Citrix Workspace Mac M1
  • Mac Citrix Workspace Scaling
  • Workspace Citrix Mac
  • Workspace Citrix Macbook
  • Citrix Workspace For Mac
  • Citrix Receiver Workspace Download

    • Applicable Products

    Citrix Workspace app for Mac provides you with self-service access to resources published on Citrix Virtual Apps and Desktop servers. Citrix Workspace app for Mac combines ease of deployment and use, and offers quick, secure access to hosted applications and desktops. As a first-time user, you can download Citrix Workspace app for Mac from Citrix.com or your own download site. You can then set up an account by entering an email address instead of a server URL. Citrix Workspace app for Mac determines the Citrix Gateway or StoreFront server associated with the email address.

    • Citrix Workspace App

    Information

    1. A list containing the majority of Citrix Workspace app for Mac (formerly Receiver for Mac) support articles collated to make this page a one stop place for you to search for and find information regarding any issues you have with the product and its related dependencies.
    2. Open the Workspace App In the upper left corner of your screen, next to the Apple symbol, click on Citrix Workspace and select Preferences: In the Preferences window, click on the Accounts tab then select the VDI account shown in the middle of the window. Next, click the Minus button and OK to confirm removing the account.

    Applicable Products

    Citrix Workspace App 1904 for Windows and later. Also for Citrix Workspace App 1910 and later.
    Note:     CitrixCitrix has deprecated weak cryptography across the board. If the configurations on the backend is not updated to support one of the 3 supported strong cipher suites, you will not be able to connect.
    At least one of these is required:
    TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (0xc030)
    TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 (0xc028)
    CitrixTLS_ECDHE_RSA_WITH_AES_128_CBC_SHA (0xc013)


    Objective

    This feature is an important change to the secure communication protocol. Cipher suites with the prefix TLS_RSA_ do not offer forward secrecy and are considered weak. These cipher suites were deprecated in Citrix Receiver version 13.10 with an option for backward compatibility.

    In this release, the TLS_RSA_ cipher suites have been removed entirely. Instead, this release supports the advanced TLS_ECDHE_RSA_ cipher suites. If your environment is not configured with the TLS_ECDHE_RSA_ cipher suites, client launches are not supported due to weak ciphers.

    Citrix workspace mac catalina

    This document aims to detail the changes to the cipher suites.

    What’s New?

    The following advanced cipher suites are supported:

    • TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (0xc030)

    • TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 (0xc028)
    • TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA (0xc013)

    In earlier releases, the GPO configuration that was available under the below Computer Configuration node which allowed to enable the deprecated cipher suites has been removed now.

    Citrix Workspace Mac M1

    Administrative Template > Citrix Component > Citrix Workspace > Network Routing > Deprecated Cipher Suites
    The following cipher matrix provides the ciphers supported by the latest SSL SDK:

    Expected failure scenarios and edge cases

    • TCP

      • OPEN mode: Session launch is not supported when the client is configured for GOV and the VDA for COM. This happens because a common cipher suite is absent.

      • FIPS/NIST(SP800-52) compliance mode: Session launch is not supported when the VDA is configured for COM the client for COM, GOV, or ANY, or the other way around. This happens because a common cipher suite is absent.

    Mac Citrix Workspace Scaling

    • DTLS v1.0 supports the following cipher suites:
    • TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
    • TLS_EMPTY_RENEGOTIATION_INFO_SCSV
    • DTLS v1.2 supports the following cipher suites:
      • TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
      • TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
      • TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
      • TLS_EMPTY_RENEGOTIATION_INFO_SCSV

    Workspace Citrix Mac

    • Therefore, session launch is not supported from a client configured for GOV to a VDA configured for COM. Also, fallback to TCP is not supported. When you use DTLS v1.0, session launch is not supported for clients configured for GOV because a common cipher suite is absent.
    .Workspace
    • DTLS does not support FIPS/NIST compliance modes.
    • DTLS v1.2 is supported by Windows 10 (1607 and later) and Windows 2016 VDAs. For more information, see Knowledge Center article https://support.citrix.com/article/CTX230010.
    • DTLS v1.2 is not supported by Citrix Gateway. This scenario can be tested only with DTLS v1.0. For Citrix Gateway ciphers troubleshooting, see Knowledge Center article https://support.citrix.com/article/CTX235509.

    Workspace Citrix Macbook


    The following matrices provide details of internal and external network connections:
    • Matrix for internal network connections (Citrix Gateway scenario)

    • Matrix for external network connections (Citrix Gateway scenario)

    Note: When NetScaler Gateway is used

    Citrix Workspace For Mac

    1. For the EDT to work, NetScaler Gateway must be of version 12.1 or higher since the older versions doesn't support ECDHE cipher suites in DTLS mode.
    2. NetScaler Gateway doesn't support DTLS 1.2 so TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 and TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 are not supported and NetScaler Gateway must be configured to use TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA for it to work in DTLS 1.0

    Citrix Receiver Workspace Download

    For more information, see the Citrix Workspace app for Windows and Mac documentation.