Enabling SecureICA causes connections to drop shortly after launch

Enabling SecureICA causes connections to drop shortly after launch

book

Article ID: CTX269689

calendar_today

Updated On:

Description

When enabling the option for SecureICA, VDAs will not launch a session. Sessions will begin to build but will disappear shortly afterwards before reaching a desktop or displaying a published app. Event Viewer will also show no explanation as to why this is occurring.

Resolution

SecureICA cannot be used if FIPS is enabled locally or by Group Policy. If FIPS is required to meet DoD STIG compliance and some form of secured connectivity is also required, ICA connections can be made over TLS port 443

Problem Cause

FIPS is enabled on VDAs. SecureICA is incompatible with FIPS encryption, and thus connections are dropped once FIPS requirements are not met.

Additional Information

Enabling Transport Layer Security to secure ICA traffic: https://docs.citrix.com/en-us/citrix-virtual-apps-desktops/secure/tls.html
Powered by Wolken Software