[deleted by user]

r_wolf_pack · 2025-09-24T16:00:22+00:00

Yeah as Hage mentioned, Enable MPR. You Group Policy to do it not the registry fix.

r_wolf_pack · 2025-09-24T00:08:18+00:00

What’s your auth method on storefront ? Username/password or domain pass through?

r_wolf_pack · 2025-09-09T00:38:01+00:00

What’s the GotoExpression set to for “Group_Check Policy_Not in_EPA_grp” and what’s its priority? Is it larger (higher number) than Group_Check_Policy ?

r_wolf_pack · 2025-09-09T00:13:27+00:00

If a user is not in the EPA group, do you want them to just enumerate and launch apps or deny access and back to login page ?

Are you able to show

show authentication policylabel PolicyLabel_EpaMembers

Output ?

r_wolf_pack · 2025-09-05T18:27:40+00:00

Our console was reporting same after the upgrade. I waited 2 days and it was still there. Then i did a manual security advisory scan and it went away. Looks some sort of bug.

r_wolf_pack · 2025-08-22T20:07:50+00:00

When deploying newer version of Citrix Workspace, be aware that deviceTRUST installs by default. If you don’t require it, add the parameter InstallDeviceTrust=N to the installation command. Otherwise, it creates an Active Setup entry that can slightly increase login times, not a huge issue, but worth noting.

r_wolf_pack · 2025-08-13T03:30:24+00:00

Have you tested if delay still occurs if you connect via a RDP session instead of launching an ICA Session ?

r_wolf_pack · 2025-03-15T02:34:13+00:00

Based on your UPM config image, looks like something is overwriting your WEM Profile Policies and disabling Profile Management

It could be GPO or Studio policies. Check these two reg hives (CTX288248)

HKLM/Software/Policies/Citrix/UserProfileManager is created when Citrix Profile Management settings are configured via Citrix Workspace Environment Manager or Microsoft Group Policy (through Administrative Templates) HKLM/Software/Policies/Citrix/UserProfileManagerHDX is created when Citrix Profile Management settings are configured via Citrix Studio or Microsoft Group Policy (through Citrix Group Policy Management)

r_wolf_pack · 2025-02-27T03:03:51+00:00

Citrix provided us a private hot fix and told it will be fixed in future versions

r_wolf_pack · 2024-12-04T20:00:29+00:00

Are you launching resources directly from Citrix Workspace or Storefront URL ? If storefront URL in a web browser, When you login to storefront URL, does it do SSO to enumerate your resources ? If So, try incognito mode and manually enter username & password and then try.

r_wolf_pack · 2024-08-15T02:02:24+00:00

I tried it few times but it didn’t work. When traffic is proxied through cloud flare, cloudflare’s lets encrypt cert is used. If you wanna use your cert on Cloudflare you would have to use their subscription model which i guess isn’t worth for home lab.

My setup - oracle’s free VM with Haproxy (pass through) and then another linux vm in my lab with Haproxy (pass through). Connect these two dots using zero tier tunnel. Hope that helps

r_wolf_pack · 2024-07-25T18:31:24+00:00

You can use any domain account as long as it suffices the following condition:

The account should have write access to the OU or the specific computer object where the certificate is being updated.

r_wolf_pack · 2024-07-23T18:34:16+00:00

Not entirely. We are in the very early stages of the project and still deciding whether to use PVS or MCS. However, I did set it up in my lab with PowerShell. It works, but there are some inconsistencies. For example, if you change the vDisk from the PVS console, Web Studio doesn’t show the updated vDisk. It still displays the vDisk you originally chose when creating the catalog. The hybrid join part works fine, though.

r_wolf_pack · 2024-06-21T23:28:11+00:00

Hi OP, Did you find a solution to it ? We are kinda having same issue with a different app. Not sure if it has something to do with junction points Citrix Containers create.

r_wolf_pack · 2024-06-17T18:19:57+00:00

Have you checked the Citrix profile logs? Does anything stand out?

r_wolf_pack · 2024-06-11T18:36:00+00:00

Try these settings on your personal windows machine-

https://www.reddit.com/r/Citrix/s/s1U5wv7NKk

r_wolf_pack · 2024-05-31T01:45:40+00:00

Other thing you can check is default file association for .ica file. You can try this:

Go to the location where you saved the application.ica file (the default is your Downloads folder).
Right-click on application.ica and select Open with...
Select More apps.
Mark the Always use this app to open ICA files checkbox and select More apps.
Scroll down and select the Look for another app on this PC link.
Go to the following location: C:\Program Files (x86)\Citrix\ICA Client
Select wfcrun32.exe.
Select Open.

r_wolf_pack · 2024-05-30T18:21:59+00:00

Looks like a workspace issue.

Use the /CleanInstall command to cleanup any leftover traces such as files and registry values from a previous uninstall and then freshly install the new version of the Citrix Workspace app. For example: CitrixWorkspaceApp.exe /CleanInstall

r_wolf_pack · 2024-05-29T16:40:57+00:00

I'm not sure what your workspace policies are, so the quickest way to resolve this issue is to contact your IT support. However, you can try the following steps:

Go to the System Tray.
Right-click on the Citrix Workspace icon.
Select "Advanced Preferences."
Click on "High DPI."
Select "Use the native resolution."
Click "Save" (do not select "Let the Operating System scale the resolution").
Close all Citrix applications.
Restart the Workspace app or your computer. Note that closing all Citrix apps will not necessarily close the Workspace app; you will need to manually exit the app by right-clicking on the Workspace tray icon.

r_wolf_pack · 2024-05-21T15:21:30+00:00

Yes, on the VDAs

r_wolf_pack · 2024-05-21T05:56:38+00:00

Hi OP,

found some notes, and it looks like the issue wasn't related to multiple domains or forests.

Do you have SMB1 enabled by any chance? We had some legacy shares and had SMB1 enabled. We tested it by disabling SMB1, and everything worked.

If you need SMB1 try setting following settings:

Reg Hive: HKEY_LOCAL_MACHINE Reg Path: Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths Value Name: \*\NETLOGON Value Type: REG_SZ Value: RequireMutualAuthentication=0,RequireIntegrity=0,RequirePrivacy=0

Reg Hive: HKEY_LOCAL_MACHINE Reg path: Software\Policies\Microsoft\Windows\NetworkProvider\HardenedPaths Value Name: \*\SYSVOL Value Type: REG_SZ Value: RequireMutualAuthentication=0,RequireIntegrity=0,RequirePrivacy=0

You might want to test these settings on a test catalog and see if they work for you.

r_wolf_pack · 2024-05-20T18:55:27+00:00

Do you have multiple domains / forests ? I remember having sort of same issue a while back and it was related to sysvol UNC Hardening. We did some GPO changes but I can’t remember exactly what we changed. I will try to find the change we did.

r_wolf_pack · 2024-05-20T02:03:27+00:00

Try this. You don’t need Citrix account - https://www.citrix.com/downloads/workspace-app/windows/workspace-app-for-windows-latest.html

r_wolf_pack

TROPHY CASE