Communication Ports Used by Citrix Technologies *updated

Fred Donovan from Citrix have updated the whitepaper – Communication Ports Used by Citrix Technologies to version 1.5 (April 2011)

Overview

This document provides an overview of ports that are used by Citrix components and must be considered as part of Virtual Computing architecture, especially if communication traffic traverses network components such as firewalls or proxy servers, where ports must be opened to ensure communication flow.

References

The assignments are listed by the Internet Assigned Numbers Authority (IANA), updated regularly, and revised when new information is available and new assignments are made. The specific location of the port numbers list is available at the following Web site: http://www.iana.org/assignments/port-numbers.

Microsoft Article “Network Ports Used by Key Microsoft Server Products”.

Microsoft Article ID 832017 “Service overview and network port requirements for the Windows Server system”.

Download WhitePaper – Communication Ports Used by Citrix Technologies here

More info about XenVault

XenVault

XenVault plug-in coming out this quarter will include many new capabilities to further simplify and enhance end point data protection.

XenVault plug-in (that works in conjunction with Citrix Receiver) creates an encrypted space, referred to as a “Safe Zone”, on the end user device to store all corporate information. Based on policies established by IT, sensitive and critical data such as cached email is automatically and seamlessly redirected to the end user’s encrypted space.

The encrypted safe zone is created on Microsoft Windows 7 devices and is protected with a user defined password. Once a safe zone has been created, only Windows explorer and XenApp delivered applications including hosted, streamed and App-V packages are able to access the encrypted space. Additionally XenApp-delivered applications are restricted to storing data only in this location.

The core capabilities available in the Technology Preview are still present in v1 and are configured and managed through the Citrix Receiver and Merchandising Server:

  • FIPS approved AES-256 level encryption for the safe zone on Windows 7
  • Lock or delete encrypted information on a user’sdevice based on administrator controls
    • When Receiver starts or refreshes, Merchandising Server tells the plug-in whether a Lock/Delete is applied
  • Control over which applications are allowed to access the encrypted data

The v1 release adds a number of features:

  • Time-based lock – Once a lease period elapses, the safe zone is locked. Lease period is calculated based on number of days user has not connected to their corporate network.
  • Administrator controlled password reset/unlock function
  • Password complexity rules – length, caps, numbers, symbols
  • Remember my password support
  • Configurable safe zone size
  • Support for English, German, Japanese, French, Spanish, and Simplified Chinese

The XenVault plug-in Technology Preview has been available since May 2010 so please take a moment to go download it and give it a try if you haven’t already (MyCitrix logon is required and you will see it under its previous name of Encrypted Data plug-in).

New Citrix XenDesktop Release Extends Benefits of Desktop Virtualization to Millions of Laptop Users

Citrix Systems (NASDAQ: CTXS)  announced yesterday a new release of Citrix® XenDesktop™ that extends the benefits of desktop virtualization to millions of enterprise laptop users with the addition of two new technologies: Citrix XenClient™ and Citrix XenVault™. Together, these two technologies make it easy for IT to incorporate mobile laptop users into a unified enterprise desktop virtualization strategy with unparalleled security and simplicity – including corporate-owned laptops managed by IT, as well as user-owned devices brought in by contractors or employees in a BYOC (bring your own computer) program.

Desktop virtualization is rapidly growing in popularity as a more secure, flexible way to deliver Windows desktops to business users in any location. With this new release, companies of all sizes can now deploy a single desktop virtualization solution that seamlessly supports both desk-based and laptop users in just about any scenario. With laptop users representing half of the workforce in many companies, today’s announcement represents a major milestone that significantly expands the reach of desktop virtualization to millions of new users.

Most mobile employees today do the majority of their work on company-owned laptops. For these workers, the best solution is a virtual desktop that runs directly on their laptop. This approach gives IT all the central management and security benefits of server hosted virtual desktops (VDI), combined with all the flexibility and ability to be disconnected from the network that come with traditional, locally installed desktops. And because the desktops runs in a local VM at all times, users never have to go through the cumbersome time consuming process “checking-out” their virtual desktop by downloading it from a central server each time they leave the office. These new capabilities are all enabled by the new XenClient technology, a groundbreaking client-side hypervisor developed in close collaboration with Intel, and optimized for the Intel® Core™ vPro™ technology.

In many companies, there is also a growing trend toward user-owned laptops that are not controlled by IT. This trend frequently involves contractors who bring their own device to a project, as well as employees who bring their own laptop to work as part of a BYOC program. In these scenarios, users do not want IT installing software on their personal laptops, nor does IT want to take on the cost and hassle of managing personal devices. IT’s primary goal in these scenarios is to ensure these workers are productive, and that any corporate data on their personal laptops is secure at all times. For user-owned devices, the simplest solution is to deliver the corporate applications these users need as an on-demand service, while ensuring that any data created by those corporate apps is automatically encrypted. This capability is enabled through the new XenVault technology.

With the addition of the new XenClient and XenVault features, XenDesktop extends its lead as the most comprehensive and flexible desktop virtualization solution on the market.

Key Facts and Highlights (XenClient):

  • Enables Virtual Desktops “To Go” – XenClient is a client-side hypervisor that enables virtual desktops to run directly on client devices. It provides all the security and central management of VDI, while allowing users to seamlessly work online or disconnected without any cumbersome check-in or check-out requirements, just as they would with a traditional locally installed desktop. While XenClient can be run on any supported PC hardware, it is ideally suited to corporate-owned laptops.
  • Control for IT, Flexibility for Users – XenClient makes it easy for IT to deliver a secure, centrally managed corporate desktop environment to laptop users without compromising user experience. They can even set up a second personal virtual desktop on the same laptop, giving users full freedom, without compromising corporate security.
  • Centralized Backup and Recovery – When disconnected from the network, XenClient operates just like a traditional installed desktop. As soon as users connect to the network, it automatically synchronizes any changes with the datacenter, ensuring full centralized backup of all corporate laptops. If a laptop is ever lost or stolen, users can easily restore their full desktop environment exactly like it was to a new laptop, while data on the original laptop can be wiped remotely.
  • Portable and Persistent Desktop Images – By separating the operating system from the underlying hardware, desktop images can now be created, secured, deployed and moved across any supported hardware, greatly reducing the maintenance burden on IT and simplifying disaster recovery for laptop users.
  • Expanded Hardware and Device Support – XenClient now also includes several new capabilities that were not supported in the initial beta release. These include multiple usability and security enhancements, new synchronization features, and expanded support for hardware platforms, wireless adapters and USB-based devices such as webcams, iPads, iPhones, Androids, BlackBerrys and Windows Mobile devices.
  • Optimized for Intel® vPro™ – The XenClient hypervisor was designed jointly with Intel to work seamlessly with the underlying hardware. Intel Core vPro processors are designed to provide the best experience for end-users and IT through use of Intel hardware-assisted virtualization, management and security technologies.

Key Facts and Highlights (XenVault):

  • Protects and Isolates User Data – The new XenVault technology automatically and transparently saves any user data created by corporate apps into an encrypted folder, ensuring that it is protected at all times from unauthorized users.
  • Ideal for Contractors and BYOC – Because XenVault supports both virtual and physical desktops, it is an ideal solution for contractors and employee-owned laptops where users don’t want IT installing software on their personal laptops. When a contract is over, an employee terminates, or the laptop is lost or stolen, corporate data remains secure, and can even be wiped remotely.
  • Supports XenApp and App-V – XenVault automatically encrypts data created by any corporate app that is delivered by Citrix XenApp™ (or the XenApp feature of XenDesktop) or Microsoft App-V.

Supporting Quotes:
Gordon Payne, Senior Vice President and General Manager, Desktop Division, Citrix
“This new release of XenDesktop represents an important next step to realizing the benefits that desktop virtualization can deliver across all users in the enterprise, including the growing number of mobile workers using laptops as their primary device. The new XenClient and XenVault technologies extend IT’s ability to manage each desktop component separately, making desktop management far more secure, scalable and cost effective.”

Rick Echevarria, Vice President, Intel Architecture Group
and General Manager, Business Client Platform Division
“As desktop virtualization continues to grow as an option for investing IT resources in strategic projects, rather than supporting desk-side maintenance visits, Citrix and Intel teamed on an innovative solution that unites the benefits of XenClient and Intel Core vPro processors. Our collaboration has produced an intelligent approach to desktop virtualization that delivers uncompromised performance, security and manageability to workers and IT.”

Al Gillen, Program Vice President, System Software, IDC
“For desktop virtualization to be adopted in a mainstream way across the entire enterprise, mobile users are a critical use case that has so far not been fully addressed. Technologies like Citrix XenClient that can deliver the control, security and centralized management for IT while providing the personalization and flexibility that users want, should help propel desktop virtualization into a strategic initiative in enterprises large and small.”

Michael Barnas, Director, Application Services, Sonnenschein Nath & Rosenthal LLP
“Our attorneys work extremely long hours and pride themselves on delivering the highest levels of client responsiveness. Providing a single laptop where users have secure access to all their corporate applications and also to their personal environment really helps with work-life balance. We see XenClient being a significant addition to our desktop virtualization strategy as we feel this can fulfill a critical need for our attorneys, while allowing us to continue to maintain the highest levels of security and control.”

Steve Lalla, Vice president and General Manager, Client Product Group, Dell
“We see tremendous benefits to our customers from the security and flexibility that XenClient brings to both IT and end users. By integrating their client hypervisor, XenClient, with their desktop virtualization architecture, XenDesktop, Citrix takes a major step forward in giving enterprises the ability to deliver centrally managed virtual desktops to all users. And by enabling support for selected Latitude laptops and OptiPlex desktops, Dell is creating the foundation for future enterprise-class deployments of this emerging client virtualization technology.”

Pricing and Availability:

  • The new XenClient and XenVault technologies will both ship in the new XenDesktop 4, Feature Pack 2 release, available at the end of September.
  • XenClient is available at no additional charge for XenDesktop Enterprise and Platinum editions customers with current Subscription Advantage agreements.
  • XenVault is enabled through a plug-in to the Citrix Receiver™ software client, which is available at no additional charge to all XenDesktop and XenApp customers.
  • Citrix XenDesktop, including the new XenClient and XenVault technologies, will be demonstrated in the Citrix booth #1219 at VMworld San Francisco, Aug. 30 – Sept. 2.