All MDM commands deploy multiple times on an MDM-enrolled iOS 11 devices.
The issue is apparent when users are on an iOS11 device, using MDM, and will apply to all versions of XenMobile Server (10.5, 10.6, all the cloud releases, etc.) if the end-user iOS11 device receives an MDM command.
If you are managing iOS devices via XenMobile, and your XenMobile deployment matches the two conditions below, then you need to take action before your end-users upgrade their devices to iOS 11.
1. XenMobile is deployed in a cluster setup (with more than one node)
2. XenMobile is deployed in MDM-only or Enterprise (MDM+MAM) mode.
Solution
Citrix recommend to modify the NetScaler load balancer configuration to use Source IP persistence for all NetScaler MDM load balancers e.g. virtual servers set up for ports 8443 and 443.
For XenMobile Service customers, Citrix Cloud Ops will be performing this configuration change as a maintenance operation, so no action is necessary by customers.
Please refer to this article for more details on Source IP persistence – https://docs.citrix.com/en-us/netscaler/12/getting-started-with-netscaler/load-balancing/configure-persistence-settings.html
The configuration change can be made either through the command-line or the NetScaler GUI.
- Here are example commands to set Source IP Persistence –
set lb vserver _XM_LB_MDM_XenMobileMDM_172.16.30.62_8443 -persistenceType SOURCEIP
- Here is a screenshot of the GUI to set Source IP Persistence
Problem Cause
XenMobile testing of iOS 11 beta releases has revealed that MDM management of iOS 11 devices will be impacted if:
1. XenMobile is deployed in a cluster setup (with more than one node), and
2. XenMobile is deployed in MDM-only or Enterprise (MDM+MAM) mode (MAM-only deployment mode is not affected)
This affects all versions of XenMobile Server.
Additional Resources