A goal of Citrix is to deliver new features and product updates to Endpoint Management customers when they are available. New releases provide more value, so there’s no reason to delay updates. Rolling updates to Endpoint Management release approximately every two weeks.
To you, the customer, this process is transparent. Initial updates are applied to Citrix internal sites only, and are then applied to customer environments gradually. Delivering updates incrementally in waves helps to ensure product quality and to maximize availability.
Endpoint Management customers also receive Endpoint Management updates and communications directly from the Endpoint Management Cloud Operations Team. Those updates keep you current with new features, known issues, fixed issues, and so on.
For details about the Endpoint Management Service Level Agreement for cloud scale and service availability, see Service Level Agreement. To monitor service interruptions and scheduled maintenance, see the Service Health Dashboard.
About the Citrix unified product portfolio
If you’ve been a Citrix customer or partner for a while, you’ll notice new names in our products and in this product documentation. The new product and component names stem from the expanding Citrix portfolio and cloud strategy. For more detail about the Citrix unified portfolio, see the Citrix product guide.
Articles in this product documentation use the following names.
- Citrix Endpoint Management: Citrix Endpoint Management is a solution for managing endpoints, offering mobile device management (MDM) and mobile application management (MAM) capabilities. With Endpoint Management, you manage device and app policies and deliver apps to users. Your business information stays protected with strict security for identity, devices, apps, data, and networks. Citrix Endpoint Management was formerly Citrix XenMobile Service.
- Mobile productivity apps: XenMobile Apps is now mobile productivity apps. Citrix-developed mobile productivity apps are a group of enterprise mobile apps offering IT a secure choice for their users’ email, web browsing, and remote access. Mobile productivity apps include Citrix Secure Hub, Citrix Secure Mail, and Citrix Secure Web. The Endpoint Management Store is now the app store.
- Citrix Workspace app: The Citrix Workspace app incorporates existing Citrix Receiver technology and the other Citrix Workspace client technologies. It has been enhanced to provide end users with a unified, contextual experience. Users can interact with all the work apps, files, and devices they need to do their best work. For more information, see this blog post.For Endpoint Management customers with the workspace experience enabled, users who open Secure Hub and click Add Apps are directed to the workspace. For more information, see Secure Hub.
- Citrix Virtual Apps and Desktops: The Citrix Virtual Apps and Desktops service (formerly XenApp and XenDesktop) offers a virtual app and desktop solution. Provided as a cloud service and as an on-premises product, Virtual Apps and Desktops gives employees the freedom to work from anywhere on any device.
Implementing this transition in our products and their documentation is an ongoing process.
- In-product content and documentation might still contain former names. For example, you might see instances of earlier names in console text, messages, directory/file names, screenshots, and diagrams.
- It is possible that some items (such as commands and MSIs) might continue to retain their former names to prevent breaking existing customer scripts.
- Related product documentation and other resources (such as videos and blog posts) that are linked from this product’s documentation might still contain former names.
Your patience during this transition is appreciated.
Citrix Endpoint Management integration with Citrix Workspace
Endpoint Management integration with Citrix Workspace differs for new and existing customers.
- For new Endpoint Management customers (as of August 27, 2018):During Workspace configuration (Workspace Configuration > Service Integrations), you choose whether to enable Endpoint Management integration with workspace. By default, the integration is enabled.
- If you enable the integration, the Citrix Workspace app aggregates resources from Endpoint Management and other configured sources. Your users access resources from the Citrix Workspace app. Other configured sources might include Citrix Virtual Apps and Desktops and Citrix Content Collaboration.
- If you disable the integration, Citrix Secure Hub aggregates mobile apps. Your users access apps from Secure Hub.
- Important:After you configure your integration choice and enroll users: If you later change your integration choice, re-enrollment is required for all users.
- For customers who onboarded before August 27, 2018:
- Workspace integration is disabled. Citrix Secure Hub aggregates mobile apps and your users access apps from Secure Hub. Citrix will notify you when migration to Workspace is supported without requiring re-enrollment for all users.
iOS MDM enrollment workflow change
To improve platform security by reducing misleading profile installations, Apple plans to introduce a new workflow for manually enrolling devices in MDM. Please note that this new workflow will affect all MDM solutions, including Citrix Endpoint Management.
The new enrollment workflow requires that users manually install the MDM profiles. To do that users navigate to the Settings page, tap General, and then tap Profiles. The list of Profiles available for installation then appears. If the user doesn’t install the profile within 24 hours of downloading it, the profile gets deleted automatically.
There is no change for MDM enrollment to servers assigned in Apple Business Manager or Apple School Manager. However, the workflow for manually enrolling in MDM does change. Currently, iOS device users receive two prompts during enrollment, for the root CA and the MDM device certificate. Starting with the Endpoint Management 19.2.0 release, iOS device users receive only the MDM device certificate prompt during enrollment. To support this change, Citrix is changing the value of the server property, ios.mdm.enrollment.installRootCaIfRequired, to false. With that change, a Safari window opens during MDM enrollment to simplify the profile installation for users.
New iOS enrollment workflow
- After you install and launch Secure Hub, tap Yes, Enroll.
- After you type your credentials, a prompt appears to allow opening the Settings page to view the profiles. Tap Allow.
- Click Done to install the downloaded profile.
- Navigate to the Settings page, tap General, and then tap Profiles.
- A list of downloaded profiles appears. To begin the installation, tap Install Profile.
- To verify the profile to install, tap Install.
- Tap Install.
- Tap Trust to complete the profile installation. Repeat these steps to install other profiles.
- After you finish installing the profiles, return to Secure Hub and tap Complete Enrollment.
- Allow Secure Hub to access your location.
- After the workflow completes, the device is enrolled.
Endpoint Management 19.2.0
- Deliver enterprise apps from a content delivery network (CDN). When a user isn’t located near an Endpoint Management server, enterprise app delivery can take a while. For significantly faster app downloads, you can instead have enterprise apps delivered from content delivery network (CDN) locations throughout the world. CDN support for enterprise apps is available for iOS apps (MDM or MAM enrollment) and Android apps (MDM or MAM enrollment). CDN support for enterprise apps isn’t available for Windows apps. To get started, see Deliver Enterprise apps from a CDN.
- DEP device enrollment change for Citrix Workspace. If Endpoint Management is integrated with Citrix Workspace, the Workspace App is included in the DEP deployment package as a required app. This feature requires that you configure your DEP account settings for iOS with required credentials set to off. Secure Hub prompts users to enroll the device in Citrix Workspace before enrolling in Endpoint Management.
- The server property ios.mdm.enrollment.installRootCaIfRequired is now set to false. Endpoint Management uses a publicly trusted certificate chain, thus it isn’t necessary to push a root CA to devices. As a result, iOS device users no longer receive a prompt to install a root CA during enrollment.
- The WiFi and Credentials policies now support Apple TV OS. In addition, you can now configure the Airplay Security device policy to control which devices can connect to Apple TV devices. For more information, see the WiFi, Credentials and Airplay Security device policy articles.
- Location device policy now available for Android Enterprise. You can define location settings for Android Enterprise devices that are managed or running in managed profile mode. See Location device policy.
- Enhanced support for Alexa for Business. Endpoint Management now includes support for Alexa for Business conferencing, adding Alexa skills to your organizations, editing skill groups. See Alexa for Business.
- Automated actions for Windows Agent policy. Using the Windows Agent policy, you can automate actions to run on Windows desktops and tablets based on registry values. For more information see the Windows Agent device policy and Automated Actions articles.
- For Android Enterprise, the No Restrictions option for required characters in a passcode is now deprecated.Android Enterprise devices running Android 7 or higher no longer support a passcode created without character restrictions. If you previously set Required characters to No Restrictions, this update changes that value to Numbers only. This change doesn’t affect the current user signin experience. For more information, see Android Enterprise settings.
Fixed issues in Endpoint Management 19.2.0
When an app is deleted from the Intune library, and a user tries to delete it from the Citrix Cloud library, they can’t delete it. [CXM-61645]
After you upload a Google Play app in the Endpoint Manager console without adding an app icon image: If you later upload an image for the app, the image doesn’t appear in the apps list. [CXM-60965]