citrix virtual apps and desktops “what’s new” material available … workspace... · 2019....

© 2019 Citrix | Confidential

What’s new with Citrix Workspace for Q3/19

Workspace Product Marketing

OCTOBER 1, 2019

Citrix Virtual Apps and Desktops “What’s New”

material available in a separate

standalone deck.

2 © 2018 Citrix | Confidential

Citrix Access Control and Identity


What’s New with Citrix Access Control

Identity SSO & App Access

NEW• 2FA with OTP in Citrix Cloud• Citrix Gateway as IdP (TP)• Okta as IdP (TP)

NEXT• Cloud Radius (TP)• Google IDP integration (Alpha)

NEW• Restricted Mobile Access Setting

NEXT• App Protection policies (anti key

logging & screen capture) - GA

NEW• Secure Mail/Secure Web Access Proxy (TechPreview)• 3rd party Mobile apps SSO (TechPreview)• Access Control for SaaS/Web apps with on-prem

StoreFront (TP)

NEXT• SSO & Policy Control for Enterprise (on-prem) Web Apps -

GA• Easier Admin configuration of apps• SAML SSO for Web Apps (TP)• SSO for Microapps

Policy Control


What’s New with Access Control Solution (Cont’d)

Virtual Apps and Desktops Performance & User Experience Analytics & Monitoring

NEW• n/a

NEXT• Enterprise access from Citrix Managed

Desktops• EDT Rendezvous for Gateway Service (TP)

NEW• 2 new HDX pops: South India and South Africa (Q2

2019)• 3 new ACS pops, one in each region (Q3 2019)

NEXT• HDX and ACS pop expansion• Bypass Gateway within enterprise network• Canary rollout of new features

NEW• n/a

NEXT• License usage info in Citrix

Cloud dashboard • SaaS & Web apps usage

reports


More secure user experience on Workspace Experience with Simple 2 Factor Authentication

1

User logs into the Citrix Workspace with their primary

username and password

2

User receives token and enters the token for access.

User registered their authenticator app (OTP mechanism) with Citrix Workspace.

3

User has secured access to digital workspace resources

within Citrix Workspace.

Two-Factor Authentication in Citrix Cloud

Using Citrix Gateway as IdP with Workspace

Problem:

• Customers have made significant investments with their on-premises Gateway and identity solutions and want to leverage that with Gateway. – Some common cases include

• Google, Okta, Ping as identity providers

• RADIUS auth

• Smart-Card Authentication

• Integrated Windows Authentication (Pass-through Auth)

• Conditional Access

Solution: Citrix Gateway as an identity provider for workspace– Provides a method for integrating many of these use-cases currently available on the Gateway

– Unblocks many customer’s migration to the cloud

Public Tech Preview


Secure Access to Enterprise Web Apps

• On-Prem Web App delivery using Gateway Service

• End-user access from Citrix Workspace

• Single Sign On to Web App using Form based or Kerberos

• Data Center needs to have Gateway Connector and Web App Server

Gateway Connectors

Web Server

Gateway ServiceEnterprise Web

Apps


Citrix Gateway Service - 14 Global POPs for seamless user experience

Azure (11)AWS (3)

VirginiaCalifornia Frankfurt

Brazil South

East US

South Central US

West US

Australia East

Japan East

North Europe

West Europe

SingaporeSouth India

South Africa North


App protection with Citrix Workspace Prevent Key Logging and Screen Capture

Public Tech Preview

Cloud app control

App Protection


*Unmodified Storefront

SF*Gtwy XAXA

WEB

SaaS only

FW

Workspace App

Secure Browser

WebFiltering

BrowserIsolation

Gateway Service

Cloud app control

SaaS

SaaS Apps

Access Control for SaaS/Web apps with on-premStorefront

Access Control

Public Tech Preview


Citrix Access Control:What’s Next

InternetInternet

What’s new:

• 300 +SAML SSO Templates for popular SaaS apps out of the box

• Option to configure any SaaS app that follows SAML 2.0 standards

What’s Next:

• Large app icons and better searching

• Auto fill with Customer Domain name

• Link to per-app configuration guide

• Download certificate in different formats

Delivering SSO to SaaS Apps – Better Admin Experience

SAML SSO for WebApps


Citrix Analytics


• Run Citrix Analytics in EU region

• Data stays in the EU

• Meet data sovereignty or other regulatory requirements

• Critical capability for many European customers and prospects

European Union Citrix Cloud region support

Citrix Analytics


• Connect to on-premises StoreFront, enables Citrix Workspace app to send user events to Citrix Analytics

• Gain user security insights with existing deployment topologies

Support for on-premises StoreFrontCitrix Analytics


Custom Risk Indicators• Define your own conditions and generate

custom risk indicators• Displayed on user’s risk timeline with built-in

indicators

Citrix Analytics

• Monitor privileged users (admins, executives), corelate their actions to their role and determine if appropriate action is needed

Privileged user status displays on user risk timeline

Citrix Analytics

• Anonymous downloads (no logon required) from share links can indicate sensitive data loss

• New action to automatically expire share links

Automated action: expire share link

• Support for wild card character (*) in searches to quickly find and display information

Self-service search enhancements


Data error status on site cardsTurns red if no data received in last one hour


Citrix Endpoint Management: What’s New and Next (Q3 2019)

Citrix Endpoint Management


Citrix Endpoint Management and Citrix Workspace

Mobile Single Sign-On Tech Preview GA Q419

• Workspace app one-time authentication now provides SSO access to all 3rd party managed apps on mobile device

• Improved user experience with faster mobile workflows and navigation

• Reduce frequency of lost/compromised passwords.

• Requires Citrix Endpoint Management service

3rd party managed enterprise app support

Citrix Gateway Service integrationTech

Preview GA Q419

MicroVPN access to on-prem resources

• Choose Citrix Gateway service as VPX for enterprise access

• No longer requires on-prem VPX

• Secure Mail and Secure Web app support without full VPX

• Authentication mechanism for remote device (mobile) access to the internal network with the same scalability and performance as a full VPX

Gateway ConnectorsGateway

Service

Exchange

Intranet

MicroVPN

Auto-discovery configurationUI driven Workspace app configuration

• Centrally configure settings for Citrix Workspace app across all device types

• Works for BYOD, no requirement to be domain joined

• When user enters UPN at enrollment MDM agent communicates with Windows ADS service to receive CEM endpoint info (For Windows devices)

• User need not know CEM server details

GA Q319

Auto-Discovery Service

Device Enrollment

Hybrid mode for migrationMigrate users to new Workspace experience (UI) over time

• New Workspace app UI requires an “all in” commitment which includes user re-enrollment (iOS and legacy Android (DA)

• Hybrid mode allows for creation of separate delivery group(s) to begin new Workspace app deployments

• Perfect for pilot programs

• Mix/Match Workspace Mode and Kiosk Mode

Available Now


Citrix Endpoint Management

Multi-Mode Server FunctionalitySupport multiple deployment modes in a single endpoint management environment

MDMIntune

MDM + MAM

MDMMAM

Only

MDMLite

• Simplifies management and administration for customers requiring multiple deployment modes

• Set mode at delivery group level

• Mix and match depending on device type and use-case/users

• Enrollment profiles applied to delivery group user/users

ComingQ419


GovernmentNow available on

Citrix Endpoint Management service

CEM for Gov – High security/public sector use casesAvailable

Q3

Tracking Location Services (Android)Support geofencing use cases for Android

• Enable/Disable tracking similar to iOS

• Enforce geographic boundaries on corporate owned/issued Android devices

• Take action if device breaches boundary limit

• Data leakage protection

Available Now

Encryption ManagementImproved resiliency, performance, battery life and more Available

Q3/Q4

• Platform encryption has improved to the point where not all managed enterprise apps require Citrix MDX encryption (double encryption)

• Encryption Management allows IT to easily set device requirements that allow managed apps to leverage platform encryption on compliant devices

• A reduced MDX footprint reduces support calls for issues that arise from multiple encryption layers and the associated app compatibility issues

WEM service updates– Database replacement

– Adaptive CPU spike protection (auto-config system to protect from CPU spike)

– WEM Service Public API ready

– Enhancement to trial experience (more for Citrix internal)

– AD Caching

WEM service updates for Citrix Endpoint Management

• CEM enrollment of WIN 10 via Workspace app; native app support (Q3)

– Citrix Workspace app is the new universal app for all workspace services, that will encompass all Citrix clients and app capabilities. With this feature (cloud only), Windows 10 machines that installed Citrix Workspace App will enroll to Citrix Endpoint Management automatically when user access Store Front by Workspace App. To achieve this:

• Endpoint Management Windows team will release a SDK that can enroll Windows 10 machine to Citrix Endpoint Management by several API calls;

• Endpoint Management Windows team will integrate with Citrix Workspace App team and Workspace App team will consume this auto-enrollment SDK;

• BitLocker Recovery key– Allows MDM administrators to recover bitlocker keys.

• Replacement of WEM agent database for aging

Workspace Environment Manager (WEM) enhancements

Available Q3


Platform Specific Support

Android Enterprise/Android Q

• Support for fully managed device with a work profile.

• Support for App Publishing with CEM console– No Google Play Store or Developer Account required

• Support for Advanced Keyguard.– Allows CEM administrators to control advanced keyguard (lock screen) features such as:

• Secure camera

• All Notifications

• Unredacted

• Trust Agents

• Fingerprint Unlock

• Support for Advanced Cert Management.– Allows CEM administrators to silently select the certificates that should be used by specific managed apps. This feature also grants the ability to remove CAs and

identity certificates from active devices, and prevent users from modifying credentials stored in the managed keystore.

Available Soon

iOS13

• Day 0 platform compatibility support for iOS 13

• Day 0 platform support for iPadOS

• Support for iOS’ new User Enrollment at GA

• New enterprise feature support includes:– Restriction deprecations from Standard MDM

– New restrictions – Hotspot modifications, Find My Devices, Find My Friends and WiFi modification

– Automated Device Enrollment (formerly DEP)

– Certificate transparency (a security enhancement)

– Custom apps for Apple School Manager and Apple Business Manager

Mid-September

Garter Magic Quadrant Leader – Citrix Endpoint ManagementUnified Endpoint Management Tools

Highlights

“….offering new advanced functionality, such as machine learning and analytics to dynamically adjust device policy.”

“….broad set of tools to help clients migrate to modern management from CMTs.”

“….easy to deploy solution.”

“….good fit for companies with an existing investment virtualization technology.”


Citrix Content Collaboration


What’s New with Citrix Content Collaboration

EXPERIENCE CHOICE SECURITY

NEW• Citrix Files for Windows/Mac• Offline file support in Citrix Files for

Windows and macOS

NEW• n/a

NEW• OneDrive for Business Connector

Improvements• Cloud Connector enhancements

NEXT• Content Recommendations

NEXT• Cloud Connector enhancements• Network Shares File Locking (Check-

in/Check Out)• Citrix Files for Outlook Improvements


Experience

Improve Productivity: organize work and guide employees with the insights and assistance needed to be more productive

Unify Collaboration: seamless solution to find, access, and collaborate on fragmented siloes in cloud, on-premises, or hybrid content repositories

Workspace Integration: content deeply integrated in the Citrix Workspace providing a friction-free user experience across apps (SaaS, virtual, mobile) and desktops

Citrix Content Collaboration


Citrix Files for Window / macOS

• Unified Desktop experience

• Combines the best of Drive Mapper, Desktop App, and Sync

• Single interface into all your files and content repositories

• Files are downloaded on demand when accessed

• Initiate critical workflows right from inside Explorer and Finder

• Map drive letters to content repositories

• Consolidate existing deployments of Drive Mapper, Desktop App, and Sync to Citrix Files via software upgrade

What’s New


Content Recommendations

• Personalized Content, tailored to a user

• Trending Content, tailored to groups

• Based on user behavior– Activity

– Content

– Context

– Social-graph

What’s Next

The development, release and timing of any features or functionality described for our products remains at our sole discretion and are subject to change without notice or consultation. The information provided is for informational purposes only and is not a commitment, promise or legal obligation to deliver any material, code or functionality and should not be relied upon in making purchasing decisions or incorporated into any contract


Choice

Content Federation: Modernize legacy content repositories without migration with a unified access solution across fragmented silos

Network Optimization: accelerate and optimize for Cloud and distributed enterprise environments

Cloud Choice: enable enterprise content choice utilizing multiple cloud providers, on-premises locations or deploy a hybrid solution

Citrix Content CollaborationHow we think about the future


OneDrive for Business enhancements

• Extending native Citrix Files features to OneDrive for Business content, including

– Share link option reflecting most recent version of the file

– Increased upload file size to 15GB.

– Administrators to consent on behalf of their users when first authenticating to the OneDrive For Business Connector.

Cloud Connector Enhancements – What’s new

Other cloud connector enhancements

• Extending native Citrix Files features to cloud connector content:

– Marking content folders as favorites

– Inclusion in Recent Files area


Cloud Connector Enhancements• Share link option reflecting most recent version of the

file across all cloud connectors

– Includes OneDrive, OneDrive for Business, Dropbox, Box, Google Drive, SharePoint Online,

Network Shares File Locking (Check In / Check Out):

• Check-In/Check-out (CICO) for on-premises network file share connectors

– Addresses ‘last writer wins’ issue

– All clients will support CICO for CIFS (WebApp, CFWin, CFMac, iOS, Android)

Cloud Connector Enhancements – What’s next


Citrix Files for Outlook Improvements:

• View and select recent files to attach to emails directly from the integrated Citrix Files file browser within Outlook(CF-Win)– Easier for customers to find and select

relevant files to link to within emails.

– This update is the first step to providing the intelligent product capability of Recommended Files within the Outlook file browser.

Improved Microsoft Outlook integration – What’s Next

citrix virtual apps and desktops “what’s new” material available … workspace... · 2019....

Documents