One Identity Safeguard for Privileged Sessions (SPS) is certified for the following server versions:
-
Citrix Virtual Apps (formerly known as Citrix XenApp) 6.5
-
Citrix Virtual Apps 7.6
-
Citrix Virtual Apps 7.15
- Citrix Virtual Apps 19.12
-
Citrix Virtual Desktops (formerly known as Citrix XenDesktop) 6.5
-
Citrix Virtual Desktops 7.6
-
Citrix Virtual Desktops 7.15
- Citrix Virtual Desktops 19.12
For details on the deployment scenarios that support Citrix Virtual Desktops (formerly known as Citrix XenDesktop), see One Identity Safeguard for Privileged Sessions (SPS) deployment scenarios in a Citrix environment.
The latest version of the Citrix Workspace app (formerly known as Citrix Receiver) for Windows, Linux and MacOS is supported.
SPS supports SecureICA using RC5 encryption. However, ICA with TLS basic encryption (non-RC5 algorithm) is not supported.
One Identity Safeguard for Privileged Sessions (SPS) the underlying TDS protocol version 7.3 or later. Due to the TDS protocol version requirement, Microsoft® SQL Server® 2008, or later, is recommended.
-
Supported client and server applications
-
MSSQL 2017 (client and server)
-
MSSQL 2019 (client and server)
One Identity Safeguard for Privileged Sessions (SPS) can act as a Remote Desktop Gateway (also called RD Gateway) and transfer the incoming connections to RDP connections.
Supported Windows client applications
The built-in applications of the Windows Server 2012, Windows Server 2012 R2, Windows Server 2016, Windows Server 2019, and Windows 10 platforms are supported.
|
CAUTION: If you are using SHA1 (Secure Hash Algorithm 1) signed certificates, SPS does not allow Remote Desktop Protocol (RDP) connections to Windows Servers.
Use the Microsoft Management Console (MMC) to verify your certificate:
-
If Remote Desktop Services (RDS) uses a self-signed certificate, make sure that you update your system to the latest patch level, then delete the certificate and restart the Remote Desktop Configuration service in order to re-generate the self-signed certificate.
-
If RDS is using a certificate imported from a Public Key Infrastructure (PKI), contact your PKI admin for a new SHA256 certificate. |
Supported Mac OS X client applications
The Royal TSX client application, tested with Royal TSX 4.2.1 on Mac OS X Mojave.
Supported server (target) applications
The built-in applications of Windows Server 2012, Windows Server 2012 R2, Windows Server 2016, Windows Server 2019, and Windows 10 platforms are supported.
Accessing Remote Desktop Services (RemoteApp programs) is also supported.
NOTE: Other Remote Desktop clients are not explicitly supported, but may be compatible with One Identity Safeguard for Privileged Sessions (SPS). When using an alternative client application, note the following limitations:
-
The rdesktop application and other client applications (for example, JAVA clients) that build on the rdesktop codebase do not support RDP shadowing and Remote Desktop Gateway connections.
-
The Remote Desktop Connection Client for Mac application does not support RDP shadowing.