citrix virtual apps and desktops “what’s new” material available … workspace... · 2019....
TRANSCRIPT
© 2019 Citrix | Confidential
What’s new with Citrix Workspace for Q3/19
Workspace Product Marketing
OCTOBER 1, 2019
Citrix Virtual Apps and Desktops “What’s New”
material available in a separate
standalone deck.
2 © 2018 Citrix | Confidential
Citrix Access Control and Identity
© 2019 Citrix | Confidential
What’s New with Citrix Access Control
Identity SSO & App Access
NEW• 2FA with OTP in Citrix Cloud• Citrix Gateway as IdP (TP)• Okta as IdP (TP)
NEXT• Cloud Radius (TP)• Google IDP integration (Alpha)
NEW• Restricted Mobile Access Setting
NEXT• App Protection policies (anti key
logging & screen capture) - GA
NEW• Secure Mail/Secure Web Access Proxy (TechPreview)• 3rd party Mobile apps SSO (TechPreview)• Access Control for SaaS/Web apps with on-prem
StoreFront (TP)
NEXT• SSO & Policy Control for Enterprise (on-prem) Web Apps -
GA• Easier Admin configuration of apps• SAML SSO for Web Apps (TP)• SSO for Microapps
Policy Control
© 2019 Citrix | Confidential
What’s New with Access Control Solution (Cont’d)
Virtual Apps and Desktops Performance & User Experience Analytics & Monitoring
NEW• n/a
NEXT• Enterprise access from Citrix Managed
Desktops• EDT Rendezvous for Gateway Service (TP)
NEW• 2 new HDX pops: South India and South Africa (Q2
2019)• 3 new ACS pops, one in each region (Q3 2019)
NEXT• HDX and ACS pop expansion• Bypass Gateway within enterprise network• Canary rollout of new features
NEW• n/a
NEXT• License usage info in Citrix
Cloud dashboard • SaaS & Web apps usage
reports
© 2019 Citrix | Confidential
More secure user experience on Workspace Experience with Simple 2 Factor Authentication
1
User logs into the Citrix Workspace with their primary
username and password
2
User receives token and enters the token for access.
User registered their authenticator app (OTP mechanism) with Citrix Workspace.
3
User has secured access to digital workspace resources
within Citrix Workspace.
Two-Factor Authentication in Citrix Cloud
Using Citrix Gateway as IdP with Workspace
Problem:
• Customers have made significant investments with their on-premises Gateway and identity solutions and want to leverage that with Gateway. – Some common cases include
• Google, Okta, Ping as identity providers
• RADIUS auth
• Smart-Card Authentication
• Integrated Windows Authentication (Pass-through Auth)
• Conditional Access
Solution: Citrix Gateway as an identity provider for workspace– Provides a method for integrating many of these use-cases currently available on the Gateway
– Unblocks many customer’s migration to the cloud
Public Tech Preview
7 © 2018 Citrix | Confidential
Secure Access to Enterprise Web Apps
• On-Prem Web App delivery using Gateway Service
• End-user access from Citrix Workspace
• Single Sign On to Web App using Form based or Kerberos
• Data Center needs to have Gateway Connector and Web App Server
Gateway Connectors
Web Server
Gateway ServiceEnterprise Web
Apps
© 2019 Citrix | Confidential
Citrix Gateway Service - 14 Global POPs for seamless user experience
Azure (11)AWS (3)
VirginiaCalifornia Frankfurt
Brazil South
East US
South Central US
West US
Australia East
Japan East
North Europe
West Europe
SingaporeSouth India
South Africa North
© 2019 Citrix | Confidential
App protection with Citrix Workspace Prevent Key Logging and Screen Capture
Public Tech Preview
Cloud app control
App Protection
© 2019 Citrix | Confidential
*Unmodified Storefront
SF*Gtwy XAXA
WEB
SaaS only
FW
Workspace App
Secure Browser
WebFiltering
BrowserIsolation
Gateway Service
Cloud app control
SaaS
SaaS Apps
Access Control for SaaS/Web apps with on-premStorefront
Access Control
Public Tech Preview
© 2019 Citrix | Confidential
12 © 2018 Citrix | Confidential
Citrix Access Control:What’s Next
InternetInternet
What’s new:
• 300 +SAML SSO Templates for popular SaaS apps out of the box
• Option to configure any SaaS app that follows SAML 2.0 standards
What’s Next:
• Large app icons and better searching
• Auto fill with Customer Domain name
• Link to per-app configuration guide
• Download certificate in different formats
Delivering SSO to SaaS Apps – Better Admin Experience
SAML SSO for WebApps
15 © 2018 Citrix | Confidential
Citrix Analytics
16 © 2018 Citrix | Confidential
• Run Citrix Analytics in EU region
• Data stays in the EU
• Meet data sovereignty or other regulatory requirements
• Critical capability for many European customers and prospects
European Union Citrix Cloud region support
Citrix Analytics
17 © 2018 Citrix | Confidential
• Connect to on-premises StoreFront, enables Citrix Workspace app to send user events to Citrix Analytics
• Gain user security insights with existing deployment topologies
Support for on-premises StoreFrontCitrix Analytics
© 2019 Citrix | Confidential
Custom Risk Indicators• Define your own conditions and generate
custom risk indicators• Displayed on user’s risk timeline with built-in
indicators
Citrix Analytics
• Monitor privileged users (admins, executives), corelate their actions to their role and determine if appropriate action is needed
Privileged user status displays on user risk timeline
Citrix Analytics
• Anonymous downloads (no logon required) from share links can indicate sensitive data loss
• New action to automatically expire share links
Automated action: expire share link
• Support for wild card character (*) in searches to quickly find and display information
Self-service search enhancements
© 2019 Citrix | Confidential
Data error status on site cardsTurns red if no data received in last one hour
23 © 2018 Citrix | Confidential
Citrix Endpoint Management: What’s New and Next (Q3 2019)
Citrix Endpoint Management
© 2019 Citrix | Confidential
Citrix Endpoint Management and Citrix Workspace
Mobile Single Sign-On Tech Preview GA Q419
• Workspace app one-time authentication now provides SSO access to all 3rd party managed apps on mobile device
• Improved user experience with faster mobile workflows and navigation
• Reduce frequency of lost/compromised passwords.
• Requires Citrix Endpoint Management service
3rd party managed enterprise app support
Citrix Gateway Service integrationTech
Preview GA Q419
MicroVPN access to on-prem resources
• Choose Citrix Gateway service as VPX for enterprise access
• No longer requires on-prem VPX
• Secure Mail and Secure Web app support without full VPX
• Authentication mechanism for remote device (mobile) access to the internal network with the same scalability and performance as a full VPX
Gateway ConnectorsGateway
Service
Exchange
Intranet
MicroVPN
Auto-discovery configurationUI driven Workspace app configuration
• Centrally configure settings for Citrix Workspace app across all device types
• Works for BYOD, no requirement to be domain joined
• When user enters UPN at enrollment MDM agent communicates with Windows ADS service to receive CEM endpoint info (For Windows devices)
• User need not know CEM server details
GA Q319
Auto-Discovery Service
Device Enrollment
Hybrid mode for migrationMigrate users to new Workspace experience (UI) over time
• New Workspace app UI requires an “all in” commitment which includes user re-enrollment (iOS and legacy Android (DA)
• Hybrid mode allows for creation of separate delivery group(s) to begin new Workspace app deployments
• Perfect for pilot programs
• Mix/Match Workspace Mode and Kiosk Mode
Available Now
© 2019 Citrix | Confidential
Citrix Endpoint Management
Multi-Mode Server FunctionalitySupport multiple deployment modes in a single endpoint management environment
MDMIntune
MDM + MAM
MDMMAM
Only
MDMLite
• Simplifies management and administration for customers requiring multiple deployment modes
• Set mode at delivery group level
• Mix and match depending on device type and use-case/users
• Enrollment profiles applied to delivery group user/users
ComingQ419
31 © 2018 Citrix | Confidential
GovernmentNow available on
Citrix Endpoint Management service
CEM for Gov – High security/public sector use casesAvailable
Q3
Tracking Location Services (Android)Support geofencing use cases for Android
• Enable/Disable tracking similar to iOS
• Enforce geographic boundaries on corporate owned/issued Android devices
• Take action if device breaches boundary limit
• Data leakage protection
Available Now
Encryption ManagementImproved resiliency, performance, battery life and more Available
Q3/Q4
• Platform encryption has improved to the point where not all managed enterprise apps require Citrix MDX encryption (double encryption)
• Encryption Management allows IT to easily set device requirements that allow managed apps to leverage platform encryption on compliant devices
• A reduced MDX footprint reduces support calls for issues that arise from multiple encryption layers and the associated app compatibility issues
WEM service updates– Database replacement
– Adaptive CPU spike protection (auto-config system to protect from CPU spike)
– WEM Service Public API ready
– Enhancement to trial experience (more for Citrix internal)
– AD Caching
WEM service updates for Citrix Endpoint Management
• CEM enrollment of WIN 10 via Workspace app; native app support (Q3)
– Citrix Workspace app is the new universal app for all workspace services, that will encompass all Citrix clients and app capabilities. With this feature (cloud only), Windows 10 machines that installed Citrix Workspace App will enroll to Citrix Endpoint Management automatically when user access Store Front by Workspace App. To achieve this:
• Endpoint Management Windows team will release a SDK that can enroll Windows 10 machine to Citrix Endpoint Management by several API calls;
• Endpoint Management Windows team will integrate with Citrix Workspace App team and Workspace App team will consume this auto-enrollment SDK;
• BitLocker Recovery key– Allows MDM administrators to recover bitlocker keys.
• Replacement of WEM agent database for aging
Workspace Environment Manager (WEM) enhancements
Available Q3
© 2019 Citrix | Confidential
Platform Specific Support
Android Enterprise/Android Q
• Support for fully managed device with a work profile.
• Support for App Publishing with CEM console– No Google Play Store or Developer Account required
• Support for Advanced Keyguard.– Allows CEM administrators to control advanced keyguard (lock screen) features such as:
• Secure camera
• All Notifications
• Unredacted
• Trust Agents
• Fingerprint Unlock
• Support for Advanced Cert Management.– Allows CEM administrators to silently select the certificates that should be used by specific managed apps. This feature also grants the ability to remove CAs and
identity certificates from active devices, and prevent users from modifying credentials stored in the managed keystore.
Available Soon
iOS13
• Day 0 platform compatibility support for iOS 13
• Day 0 platform support for iPadOS
• Support for iOS’ new User Enrollment at GA
• New enterprise feature support includes:– Restriction deprecations from Standard MDM
– New restrictions – Hotspot modifications, Find My Devices, Find My Friends and WiFi modification
– Automated Device Enrollment (formerly DEP)
– Certificate transparency (a security enhancement)
– Custom apps for Apple School Manager and Apple Business Manager
Mid-September
Garter Magic Quadrant Leader – Citrix Endpoint ManagementUnified Endpoint Management Tools
Highlights
“….offering new advanced functionality, such as machine learning and analytics to dynamically adjust device policy.”
“….broad set of tools to help clients migrate to modern management from CMTs.”
“….easy to deploy solution.”
“….good fit for companies with an existing investment virtualization technology.”
39 © 2018 Citrix | Confidential
Citrix Content Collaboration
© 2019 Citrix | Confidential
What’s New with Citrix Content Collaboration
EXPERIENCE CHOICE SECURITY
NEW• Citrix Files for Windows/Mac• Offline file support in Citrix Files for
Windows and macOS
NEW• n/a
NEW• OneDrive for Business Connector
Improvements• Cloud Connector enhancements
NEXT• Content Recommendations
NEXT• Cloud Connector enhancements• Network Shares File Locking (Check-
in/Check Out)• Citrix Files for Outlook Improvements
© 2019 Citrix | Confidential
Experience
Improve Productivity: organize work and guide employees with the insights and assistance needed to be more productive
Unify Collaboration: seamless solution to find, access, and collaborate on fragmented siloes in cloud, on-premises, or hybrid content repositories
Workspace Integration: content deeply integrated in the Citrix Workspace providing a friction-free user experience across apps (SaaS, virtual, mobile) and desktops
Citrix Content Collaboration
42 © 2018 Citrix | Confidential
Citrix Files for Window / macOS
• Unified Desktop experience
• Combines the best of Drive Mapper, Desktop App, and Sync
• Single interface into all your files and content repositories
• Files are downloaded on demand when accessed
• Initiate critical workflows right from inside Explorer and Finder
• Map drive letters to content repositories
• Consolidate existing deployments of Drive Mapper, Desktop App, and Sync to Citrix Files via software upgrade
What’s New
44 © 2018 Citrix | Confidential
Content Recommendations
• Personalized Content, tailored to a user
• Trending Content, tailored to groups
• Based on user behavior– Activity
– Content
– Context
– Social-graph
What’s Next
The development, release and timing of any features or functionality described for our products remains at our sole discretion and are subject to change without notice or consultation. The information provided is for informational purposes only and is not a commitment, promise or legal obligation to deliver any material, code or functionality and should not be relied upon in making purchasing decisions or incorporated into any contract
© 2019 Citrix | Confidential
Choice
Content Federation: Modernize legacy content repositories without migration with a unified access solution across fragmented silos
Network Optimization: accelerate and optimize for Cloud and distributed enterprise environments
Cloud Choice: enable enterprise content choice utilizing multiple cloud providers, on-premises locations or deploy a hybrid solution
Citrix Content CollaborationHow we think about the future
46 © 2018 Citrix | Confidential
OneDrive for Business enhancements
• Extending native Citrix Files features to OneDrive for Business content, including
– Share link option reflecting most recent version of the file
– Increased upload file size to 15GB.
– Administrators to consent on behalf of their users when first authenticating to the OneDrive For Business Connector.
Cloud Connector Enhancements – What’s new
Other cloud connector enhancements
• Extending native Citrix Files features to cloud connector content:
– Marking content folders as favorites
– Inclusion in Recent Files area
47 © 2018 Citrix | Confidential
Cloud Connector Enhancements• Share link option reflecting most recent version of the
file across all cloud connectors
– Includes OneDrive, OneDrive for Business, Dropbox, Box, Google Drive, SharePoint Online,
Network Shares File Locking (Check In / Check Out):
• Check-In/Check-out (CICO) for on-premises network file share connectors
– Addresses ‘last writer wins’ issue
– All clients will support CICO for CIFS (WebApp, CFWin, CFMac, iOS, Android)
Cloud Connector Enhancements – What’s next
48 © 2018 Citrix | Confidential
Citrix Files for Outlook Improvements:
• View and select recent files to attach to emails directly from the integrated Citrix Files file browser within Outlook(CF-Win)– Easier for customers to find and select
relevant files to link to within emails.
– This update is the first step to providing the intelligent product capability of Recommended Files within the Outlook file browser.
Improved Microsoft Outlook integration – What’s Next
© 2019 Citrix | Confidential