Administrator Guide
Table Of Contents
- Dell Wyse ThinOS Version 9.1 Administrator’s Guide
- Contents
- Introduction
- Upgrading the ThinOS firmware
- Register ThinOS devices to Wyse Management Suite
- Download the ThinOS firmware, BIOS, and application packages
- Add ThinOS 9.x firmware to the repository
- Upgrade ThinOS 8.6 to ThinOS 9.x
- Upgrade ThinOS 9.x to later versions using Wyse Management Suite
- Upgrade ThinOS 9.x to later versions using Admin Policy Tool
- Add ThinOS application packages to the repository
- Upload and push ThinOS 9.x application packages using Groups and Configs on Wyse Management Suite
- Upload and install ThinOS 9.x application packages using Admin Policy Tool
- Firmware installation using Dell Wyse USB Imaging Tool
- Upgrade BIOS
- Edit BIOS settings
- Delete ThinOS application packages
- Getting started with ThinOS 9.1
- End User License Agreement
- Configure ThinOS using First Boot Wizard
- Configure account privileges for ThinOS
- Connect to a remote server
- Connecting a display
- Connecting a printer
- Desktop overview
- Modern interactive desktop features
- Classic desktop features
- Configuring thin client settings and connection broker settings
- Configure ThinOS using Admin Policy Tool
- Locking the thin client
- Shut down and restart
- Battery information
- Login dialog box features
- View the system information
- Sleep mode
- Import certificates to ThinOS from Admin Policy Tool or Wyse Management Suite
- ThinOS system variables
- Configuring the global connection settings
- Configuring connectivity
- Configuring connection brokers
- Configuring Citrix
- Configure the Citrix broker setup
- Citrix ADC
- Citrix Cloud services
- Automatically configure using DNS for email discovery
- Citrix HDX Adaptive transport (EDT)
- HDX Adaptive Display V2
- Browser Content Redirection
- HTML5 Video Redirection
- Windows Media Redirection
- QUMU Video Optimization Pack for Citrix
- Citrix Self-Service Password Reset
- Citrix SuperCodec
- Anonymous logon
- Enable UDP audio in a Citrix session
- Keyboard layout synchronization in VDA
- Cursor pattern in ICA session
- Citrix multiple virtual channels
- Configure the Citrix session properties
- Using multiple displays in a Citrix session
- USB Printer Redirection
- Configure the Citrix UPD printer
- Configure the device-specific printer driver
- Export Citrix Workspace App logs
- Configure multifarm
- Configure multilogon
- Configuring VMware
- Configure the VMware broker connection
- VMware Real Time Audio-Video
- Enable Scanner Redirection
- Enable Serial Port Redirection
- Enable Session Collaboration
- Enable Battery State Redirection
- Relative mouse
- Configure Workspace ONE Mode
- Unified Access Gateway
- Configure the VMware integrated printing settings
- Wacom tablet support on ThinOS
- Configuring PCoIP connections using Teradici Remote Workstation card
- Configuring Windows Virtual Desktop
- Log in to Windows Virtual Desktop using Active Directory Federation Services
- Configuring Microsoft Remote Desktop Services
- Configuring the Amazon WorkSpaces broker connection
- Teradici PCoIP licensing
- Configure the Teradici Cloud Access broker connection
- Enable ThinOS to check the server certificate common name
- Bloomberg keyboard support
- Configure the Select Group feature to log in to different brokers
- Configuring Citrix
- Unified Communications optimization with ThinOS
- Configuring third-party authentication settings
- Configure the Imprivata OneSign server
- VDI selection on ThinOS
- Configure the VDI settings on OneSign server
- Configure objects on Imprivata Server
- Use smart card as proximity card
- Enroll a proximity card with Imprivata OneSign
- Imprivata Bio-metric Single Sign-On
- Grace period to skip second authentication factor
- Imprivata OneSign ProveID Embedded
- Configure Imprivata fingerprint reader for Citrix ICA and PCoIP sessions
- Configure Imprivata fingerprint reader for VMware Blast session
- Configure the Identity Automation
- Identity Automation support matrix
- Enroll a proximity card with Identity Automation on ThinOS
- Use a proximity card for sign-on with Identity Automation on ThinOS
- Use a proximity card to secure the remote session with Identity Automation on ThinOS
- Use a proximity card to tap-over another user session with Identity Automation on ThinOS
- Configuring the thin client local settings
- Configuring the system preferences
- Configure the display settings
- Configuring the peripherals settings
- Configure the keyboard settings
- Configure the mouse settings
- Configure the touchpad settings
- Configure the audio settings
- Configure the serial settings
- Configure the camera device
- Configure the Bluetooth settings
- Secure Digital cards
- Configure the Jabra Xpress headset settings
- Configure the EPOS headset settings
- Configure the HID Fingerprint reader settings
- Configuring the printer settings
- Reset to factory defaults
- Using the system tools
- Using Wyse Management Suite
- Functional areas of Wyse Management Suite console
- Managing groups and configurations
- Edit the ThinOS 9.x policy settings
- Managing devices
- Managing Jobs
- Managing rules
- Managing Events
- Managing users
- Portal administration
- Troubleshooting your thin client
- Capture an HTTP log using ThinOS
- System crashes, freezes or restarts abruptly
- Broker agent login failure
- Citrix desktop and application crashes abruptly
- Unified Communications software call failure
- Request a log file using Wyse Management Suite
- View audit logs using Wyse Management Suite
- System log and trace information
- Upgrade or conversion troubleshooting and logs
- How to debug with new support beyond ThinOS 8?
- How to debug with same support in ThinOS 8?
- Common log files and locations
- Frequently Asked Questions
- ThinOS-related questions
- How do I upgrade from ThinOS 8.6 to 9.1?
- What should I do if the package installation fails?
- Is Wyse Management Suite 3.1 the only way to manage ThinOS 9.1?
- Is USB Imaging Tool method a possible option for upgrading to ThinOS 9.1?
- Can ThinOS 9.1 be installed on a PCoIP device?
- Does ThinOS 9.1 support zero desktop?
- Does ThinOS 9.1 support ThinOS configurations using INI files?
- iPhone cannot be redirected to the Citrix Desktop session
- Android smartphone is not displayed in the session when redirected or mapped
- Does Citrix Workspace app replace Citrix Receiver on ThinOS?
- What is Workspace mode on ThinOS 9.1?
- Can I enable Flash content to be rendered using a local Flash Player on ThinOS 9.1?
- How do I verify if HDX Enlightened Data Transport Protocol is active?
- How do I check if HTML5 Video Redirection is working?
- How do I check if QUMU Multimedia URL Redirection is working?
- How do I check if Windows Media Redirection is working?
- Is persistent logging supported in ThinOS?
- Is tls.txt file included in network traces on ThinOS?
- Will ThinOS 9.1 device reboot automatically when the system crashes?
- Wyse Management Suite-related questions
- ThinOS-related questions
2. Add the user to Azure AD Citrix ADC (formerly NetScaler) Enterprise application users and groups.
3. Ensure that the shadow account of the user exists in local domain users group.
4. Ensure that Self-Service Password Reset Enabled option is selected in Azure AD for the user.
About this task
This section describes how to enable Azure AD Self-Service Password Reset function for Citrix ADC Single Sign-on with SAML
authentication.
Steps
1. On the Broker setup tab, select Citrix Virtual Apps and Desktops from the Broker type drop-down list.
2. In the Broker Server field, enter the Citrix ADC Gateway URL, and click OK.
The login window is displayed.
3. Enter the user credentials of the Azure AD user and click Next.
4. On the Don't lose access to your account! page, configure the following options:
● Authentication Phone
a. Click Set it up now.
b. From the drop-down list, select your country code.
c. Enter your phone number.
d. Click either text me or call me.
A verification code is received on your phone by call or text message.
e. Enter the verification code and click Verify.
● Authentication Email
a. Click Set it up now.
b. Enter the valid email address.
c. Click email me.
A verification code is sent to your email.
d. Enter the verification code and click Verify.
5. Click Finish.
6. Continue with the user login.
Configure Citrix NetScaler using Okta
Okta provides Single Sign-On (SSO) capability using Remote Authentication Dial-In User Service (RADIUS) for Citrix Virtual
Apps and Desktops. ThinOS supports Okta through the Citrix NetScaler Gateway 11.0 or later. The Okta RADIUS Agent is
used for user authentication. The Okta RADIUS server agent assigns the user authentication to Okta using single-factor
authentication (SFA) or multifactor authentication (MFA).
For more information about configuring Citrix NetScaler Gateway to use the Okta RADIUS Agent, see the Citrix NetScaler
Gateway Radius Configuration Guide at help.okta.com.
NOTE:
● On the ThinOS client, you need UPN at the login window.
● Phone authentication by using Okta is supported only in US and Canada.
Limitation
Only OKTA with Citrix Gateway (RADIUS) is verified. However, the StoreFront with OKTA SAML authentication or OKTA with
Citrix Gateway (SAML) is not verified.
Citrix Cloud services
ThinOS supports Citrix Cloud services. It acts as a single management console to deploy applications or desktops on any virtual
or cloud setup for a secure digital workspace. For more information about Citrix Cloud services, see the Citrix Cloud article at
docs.citrix.com.
68
Configuring connection brokers