Password field not displayed for published apps in Windows Server 2019

Password field not displayed for published apps in Windows Server 2019

book

Article ID: CTX267071

calendar_today

Updated On:

Description

  • When publishing any O365 app such as Excel or Word, users are prompted to authenticate to Office 365 to activate the app.
  • Password field is not rendered when the app is published so users can never authenticate.
  • This also occurs with RDP initial app.
  • Microsoft has reproduced the issue with using RDS on a Server 2019 and Windows 10.

Environment

Citrix is not responsible for and does not endorse or accept any responsibility for the contents or your use of these third party Web sites. Citrix is providing these links to you only as a convenience, and the inclusion of any link does not imply endorsement by Citrix of the linked Web site. It is your responsibility to take precautions to ensure that whatever Web site you use is free of viruses or other harmful items.

Resolution

This issue is addressed by the new Shellbridge feature. To enable Shellbridge:

  1. Install Citrix VDA version 2206*.
  2. Add the following registry key**.
HKEY_LOCAL_MACHINE\SOFTWARE\Citrix\Citrix Virtual Desktop Agent
Name: Shellbridge
Type: REG_DWORD
Value: 1
  1. Install the required updates to support the Shellbridge feature as follows:
 
 
OSBugReleaseRelease DateKB
 Windows 11386501765c.2205/24/2022KB5014019
 Server 2022381346855c.2205/24/2022KB5014021
 Windows 10381346805c.2205/24/2022KB5014023
 Server 2019381346705c.2205/24/2022KB5014022

Note:  Does not apply to Windows Server 2016.
[LCM-7637]
  1. If you use Citrix Profile Management, make sure the UPM profile is synchronizing these two folders:
  • %localappdata%\Microsoft\Office\16.0\Licensing
  • %localappdata%\Microsoft\Credential
  1. Check that the Shellbridge feature got enabled: publish Command Prompt (cmd.exe) as an ICA app, launch it and run: 
    start ms-settings:printers
    If Shellbridge works, you should see a printer settings window.


Workarounds if you cannot upgrade to VDA 2203 CU1 or 2206: 

  • Install Windows Server 2016 VDAs, as it does not have Web Account Manager.
or
  • Disable Web Account Manager via registry.***
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\Identity
“DisableADALatopWAMOverride”= dword:00000001

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\Identity
“DisableAADWAM”= dword:00000001

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\Identity
"DisableMSAWAM"= dword:00000001




*    The issue is fixed in 2203 CU1

**    Shellbridge is disabled by default on the 2203 LTSR series of VDA (CU1-CU4, and more recent), meaning that a Shellbridge=1 regkey needs to be manually created for the feature to work.
       On CR versions starting from 2212, the feature is enabled by default.

***    Disabling WAM as a workaround does not always work and may not be supported by Microsoft. See: https://docs.microsoft.com/en-us/office365/troubleshoot/administration/disabling-adal-wam-not-recommended

Problem Cause

Problem with the Web Account Manager component of the Windows Server 2019 and Windows 10 OS.

Additional Information

https://docs.citrix.com/en-us/citrix-virtual-apps-desktops/1912-ltsr/known-issues.html
When applications from Microsoft Office 365 build 16.0.7967 and later are published as applications from a Windows Server 2019 host, Office license activation fails. Citrix are working with Microsoft to address this Microsoft limitation. The supported workaround is to install Windows Server 2016 VDAs, which do not have Web Account Manager component that is misbehaving. [LCM-7637]

https://docs.microsoft.com/en-us/office365/troubleshoot/authentication/automatic-authentication-fails ​​​​​​​
Powered by Wolken Software