Citrix Secure Access for Linux release notes
The Citrix Secure Access client and Citrix End Point Analysis (EPA) client for Linux are now released on a standalone basis and are compatible with all NetScaler versions. The Citrix Secure Access client version follows the format YY.MM Release.Build.
The release notes describe the new features, enhancements to the existing features, fixed issues, and known issues.
What’s new: The new features and enhancements available in the current release.
Fixed issues: The issues that are fixed in the current release.
Known issues: The issues that exist in the current release and their workarounds, wherever applicable.
For detailed information on the supported features, see NetScaler Gateway Product Documentation.
24.11.4 (03-Dec-2024)
What’s new
-
Interoperability enhancements with third-party secure web gateway
The Citrix Secure Access user-agent strings are updated for enhanced interoperability with the third-party secure web gateways.
[CSACLIENTS-8595]
-
Support to triage and troubleshoot enumeration failures
Citrix Secure Access now supports triaging and troubleshooting enumeration failures using Citrix Monitor or Citrix Director, in Secure Private Access deployments. For more information, see Secure Private Access integration with Director (Preview).
[CSACLIENTS-10502]
-
IP address spoofing for TCP-based DNS requests
Citrix Secure Access supports IP address spoofing of TCP-based DNS requests in the following scenarios:
-
FQDN-based tunneling rules are configured on NetScaler Gateway.
-
FQDNs match DNS suffixes or host names configured in the applications in Citrix Secure Private Access deployment.
[CSACLIENTS-12551]
-
24.10.1 (07-Oct-2024)
What’s new
-
Support for FQDN-based tunneling
Citrix Secure Access client for Linux supports FQDN-based tunneling for TCP and UDP applications in Secure Private Access and NetScaler Gateway on-premises deployment. For more information, see Configure connection settings in a session profile.
Note:
-
FQDN-based tunneling is supported with split tunnel ON and split tunnel OFF settings and is not supported with split tunnel REVERSE setting.
-
DNS resolution is supported only with split DNS Remote setting and is performed over the tunnel regardless of the NetScaler Gateway’s split DNS setting.
[CSACLIENTS-10500]
-
Fixed issues
-
Client sessions might remain active on NetScaler Gateway and service node even after the user logs out of the Citrix Secure Access client.
[NSHELP-38259]
24.8.5 (02-Sep-2024)
What’s new
-
Support for Secure Private Access deployments
Citrix Secure Access for Linux supports IP address-based TCP/UDP applications in both on-premises and cloud deployments of Citrix Secure Private Access. To configure TCP/UDP apps for on-premises, see Configure TCP/UDP apps. To configure TCP/UDP apps for cloud, see Configure TCP/UDP server-client apps.
Note:
IP address-based TCP/UDP apps are supported in Ubuntu 18.04, Ubuntu 20.04. They are not supported in Ubuntu 22.04.
[CTXENG-341]
-
Support for nFactor authentication
Citrix Secure Access for Linux now supports nFactor authentication directly through the VPN client. When users log on to Citrix Secure Access for Linux, a webview window appears, prompting them to authenticate based on the admin-configured nFactor flow. For details about nFactor authentication, see nFactor authentication.
[CTXENG-338]
Fixed issues
-
EPA scan fails if the length of EPA expressions configured on NetScaler Gateway exceeds 1024 characters.
[NSHELP-38149]
-
In the Citrix Secure Access client UI, the “Choose session to transfer” section fails to display the list of transfer logon sessions when the maximum limit of the NetScaler Gateway sessions is reached.
[CSACLIENTS-352]
23.10.3 (16-Oct-2023)
Fixed issues
For French users, the Connections page of the Citrix Secure Access for Linux UI displays the data transfer rate in KB and MB instead of Ko and Mo, respectively.
[NSOSLX-177]
23.9.1 (08-Sep-2023)
What’s new
This release addresses issues that help to improve overall performance and stability.
[CGOP-25231]
23.6.2 (20-Jun-2023)
What’s new
-
Ubuntu 22.04 support for Citrix Secure Access client and Citrix EPA client
Ubuntu 22.04 is the latest long-term support release of Ubuntu. The Citrix Secure Access and Citrix EPA clients are compatible with Ubuntu 22.04. For more information, see Client software requirements.
[CGOP-24312]
-
GSLB support for Citrix Secure Access and Citrix EPA clients
The Citrix Secure Access client and Citrix EPA client for Ubuntu support the Global Server Load Balancing (GSLB) feature on NetScaler Gateway. By configuring GSLB for NetScaler Gateway, admins can ensure that the enterprise network (intranet resources) is always available to end-users from any geographic location. GSLB also addresses disaster situations or network outages wherein users of one data center can be redirected to another data center. For more information, see Support for active-active GSLB deployments on NetScaler Gateway.
[CGOP-23506]
-
HTTPOnly support for Citrix Secure Access and Citrix EPA clients
The Citrix Secure Access and Citrix EPA clients support the HTTPOnly flag on the authentication cookies. NetScaler Gateway admins configure the HTTPOnly feature on the authentication cookies that are generated by web applications. This feature helps in preventing cookie theft due to cross-site scripting. For more information, see Enforce the HttpOnly flag on authentication cookies.
[CGOP-23517]