EPA fails after Chrome/Edge version 98 update
Article ID: CTX339975
Updated On:
Description
NOTE: It’s recommended to have latest version of EPA and Gateway Plugins to get optimum User experience as several items have been addressed in recent versions such as disconnection on reboot and standalone setup for plugin.
Few of the issues in feedback , “disconnection on reboot”, and “standalone setup for plugin” are already addressed in latest plugins.
EPA cannot launch and fails after Google chrome or Edge is updated to v98 or higher, errors observed at the web browser console:
EPA Verbose logs shows waiting or failure with communicating to EPA:
ONAPIMESSAGE: wParam 102 lParam 1002.
Resolution
Citrix has identified the issue and released a new EPA plugin for Windows and macOS
For Windows: https://www.citrix.com/en-in/downloads/citrix-gateway/plug-ins/citrix-secure-access-client-for-windows.html
For macOS: https://www.citrix.com/en-in/downloads/citrix-gateway/plug-ins/EPA-clients-for-macOS.html
The new plugins mentioned above are able to handle Preflight requests.
For Windows: https://www.citrix.com/en-in/downloads/citrix-gateway/plug-ins/citrix-secure-access-client-for-windows.html
For macOS: https://www.citrix.com/en-in/downloads/citrix-gateway/plug-ins/EPA-clients-for-macOS.html
For Citrix Workspace App for Windows
- Citrix Workspace app uses Edge Webview 2 for rendering login page and invoking plugin, the EPA plugin might crash using CWA as well, the workaround is to add the below registry ( First create WebView2 key inside that create InsecurePrivateNetworkRequestsAllowedForUrls key ) at HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Edge\WebView2\InsecurePrivateNetworkRequestsAllowedForUrls or at HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\MicrosoftEdge\WebView2\InsecurePrivateNetworkRequestsAllowedForUrls ( depending on Edge editions, registry name or location may change )
Name -> 1
Value -> [*.]localhost[*.]
Reference screenshot for HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\MicrosoftEdge\WebView2\InsecurePrivateNetworkRequestsAllowedForUrls
Value -> [*.]localhost[*.]
Reference screenshot for HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\MicrosoftEdge\WebView2\InsecurePrivateNetworkRequestsAllowedForUrls
Problem Cause
From Chromev98 or Edge v98, any requests to the private network are being treated similar to cross-domain requests and thereby chrome/edge sends a preflight ( Request Method is Option ) request and expects certain headers in the response,The new plugins mentioned above are able to handle Preflight requests.
Issue/Introduction
EPA launch chome v98 update
Was this article helpful?
Yes
No
Powered by
