Administrator Guide
Table Of Contents
- Dell Wyse ThinOS Version 9.1 Administrator’s Guide
- Contents
- Introduction
- Upgrading the ThinOS firmware
- Before you upgrade
- Register ThinOS devices to Wyse Management Suite
- Enable Live Update
- Download the ThinOS firmware, BIOS, and application packages
- Add ThinOS 9.x firmware to the repository
- Upgrade ThinOS 8.6 to ThinOS 9.x
- Upgrade ThinOS 9.x to later versions using Wyse Management Suite
- Upgrade ThinOS 9.x to later versions using Admin Policy Tool
- Add ThinOS application packages to the repository
- Upload and push ThinOS 9.x application packages using Groups and Configs on Wyse Management Suite
- Upload and install ThinOS 9.x application packages using Admin Policy Tool
- Firmware installation using Dell Wyse USB Imaging Tool
- Upgrade BIOS
- Edit BIOS settings
- Delete ThinOS application packages
- Downgrading the ThinOS firmware
- Getting started with ThinOS 9.1
- End User License Agreement
- Configure ThinOS using First Boot Wizard
- Configure account privileges for ThinOS
- Connect to a remote server
- Connecting a display
- Connecting a printer
- Configure WMS settings
- Desktop overview
- Modern interactive desktop features
- Classic desktop features
- Configuring thin client settings and connection broker settings
- Configure ThinOS using Admin Policy Tool
- Locking the thin client
- Shut down and restart
- Battery information
- Login dialog box features
- View the system information
- Sleep mode
- Import certificates to ThinOS from Admin Policy Tool or Wyse Management Suite
- ThinOS system variables
- Configuring the global connection settings
- Configuring connectivity
- Configuring connection brokers
- Configuring Citrix
- Configure the Citrix broker setup
- Citrix ADC
- Citrix Cloud services
- Automatically configure using DNS for email discovery
- Citrix HDX Adaptive transport (EDT)
- HDX Adaptive Display V2
- Browser Content Redirection
- HTML5 Video Redirection
- Windows Media Redirection
- QUMU Video Optimization Pack for Citrix
- Citrix Self-Service Password Reset
- Citrix SuperCodec
- Anonymous logon
- Enable UDP audio in a Citrix session
- Keyboard layout synchronization in VDA
- Cursor pattern in ICA session
- Citrix multiple virtual channels
- Configure the Citrix session properties
- Using multiple displays in a Citrix session
- USB Printer Redirection
- Configure the Citrix UPD printer
- Configure the device-specific printer driver
- Export Citrix Workspace App logs
- Configure multifarm
- Configure multilogon
- Configuring VMware
- Configure the VMware broker connection
- VMware Real Time Audio-Video
- Enable Scanner Redirection
- Enable Serial Port Redirection
- Enable Session Collaboration
- Enable Battery State Redirection
- Relative mouse
- Configure Workspace ONE Mode
- Unified Access Gateway
- Configure the VMware integrated printing settings
- Wacom tablet support on ThinOS
- USB Redirection in a VDI session
- Enable Multimedia Redirection in Blast session
- Configuring Windows Virtual Desktop
- Log in to Windows Virtual Desktop using Active Directory Federation Services
- Configuring Microsoft Remote Desktop Services
- Enable Terminal Services Gateway
- Configure the Remote Desktop Services collection
- Add a Remote Desktop Protocol connection
- Log in to RDP session using Remote Desktop Gateway
- Log in to RDP session using Remote Desktop Gateway from Wyse Management Suite or Admin Policy Tool
- Change the display mode for RDP connection using shortcut keys
- Configuring the Amazon WorkSpaces broker connection
- Teradici PCoIP licensing
- Configure the Teradici Cloud Access broker connection
- Configuring PCoIP connections using Teradici Remote Workstation card
- Enable ThinOS to check the server certificate common name
- Bloomberg keyboard support
- Configure the Select Group feature to log in to different brokers
- Configuring Citrix
- Unified Communications optimization with ThinOS
- Citrix Unified Communications support on Wyse 3040 Thin Clients
- Citrix HDX RealTime Optimization Pack for Skype for Business
- VMware Horizon Virtualization Pack for Skype for Business
- Cisco Jabber Softphone for VDI
- Cisco Webex Teams for VDI
- Cisco Webex Meetings for VDI
- Zoom Meetings for VDI
- Microsoft Teams Optimization
- Configuring third-party authentication settings
- Configure the Imprivata OneSign server
- VDI selection on ThinOS
- Configure the VDI settings on OneSign server
- Configure objects on Imprivata Server
- Use smart card as proximity card
- Enroll a proximity card with Imprivata OneSign
- Imprivata Bio-metric Single Sign-On
- Grace period to skip second authentication factor
- Imprivata OneSign ProveID Embedded
- Configure Imprivata fingerprint reader for Citrix ICA and PCoIP sessions
- Configure Imprivata fingerprint reader for VMware Blast session
- Identity Automation
- Configure the Identity Automation
- Install the Identity Automation QwickAccess app package on ThinOS
- Identity Automation support matrix
- Enroll a proximity card with Identity Automation on ThinOS
- Use a proximity card for sign-on with Identity Automation on ThinOS
- Use a proximity card to secure the remote session with Identity Automation on ThinOS
- Use a proximity card to tap-over another user session with Identity Automation on ThinOS
- Configuring the thin client local settings
- Configuring the system preferences
- Configure the display settings
- Configuring the peripherals settings
- Configure the keyboard settings
- Configure the mouse settings
- Configure the touchpad settings
- Configure the audio settings
- Configure the serial settings
- Configure the camera device
- Configure the Bluetooth settings
- Secure Digital cards
- Configure the Jabra Xpress headset settings
- Configure the EPOS headset settings
- Configure the HID Fingerprint reader settings
- Configuring the printer settings
- Reset to factory defaults
- Resetting to factory defaults using G-Key reset
- Recovery mode using R-Key
- Using the system tools
- Using Wyse Management Suite
- Functional areas of Wyse Management Suite console
- Managing groups and configurations
- Edit the ThinOS 9.x policy settings
- Managing devices
- View the BIOS details
- Managing Jobs
- Managing rules
- Managing Events
- Managing users
- Portal administration
- Troubleshooting your thin client
- Capture an HTTP log using ThinOS
- System crashes, freezes or restarts abruptly
- Broker agent login failure
- Citrix desktop and application crashes abruptly
- Unified Communications software call failure
- Request a log file using Wyse Management Suite
- View audit logs using Wyse Management Suite
- System log and trace information
- Upgrade or conversion troubleshooting and logs
- How to debug with new support beyond ThinOS 8?
- How to debug with same support in ThinOS 8?
- Frequently Asked Questions
- ThinOS-related questions
- How do I upgrade from ThinOS 8.6 to 9.1?
- What should I do if the package installation fails?
- Is Wyse Management Suite 3.1 the only way to manage ThinOS 9.1?
- How to verify third-party binary versions on your ThinOS client?
- Is USB Imaging Tool method a possible option for upgrading to ThinOS 9.1?
- Can ThinOS 9.1 be installed on a PCoIP device?
- Does ThinOS 9.1 support zero desktop?
- Does ThinOS 9.1 support ThinOS configurations using INI files?
- iPhone cannot be redirected to the Citrix Desktop session
- Android smartphone is not displayed in the session when redirected or mapped
- Does Citrix Workspace app replace Citrix Receiver on ThinOS?
- What is Workspace mode on ThinOS 9.1?
- Can I enable Flash content to be rendered using a local Flash Player on ThinOS 9.1?
- How do I verify if HDX Enlightened Data Transport Protocol is active?
- How do I check if HTML5 Video Redirection is working?
- How do I check if QUMU Multimedia URL Redirection is working?
- How do I check if Windows Media Redirection is working?
- How to check if Multimedia Redirection is working?
- Is persistent logging supported in ThinOS?
- Is tls.txt file included in network traces on ThinOS?
- Will ThinOS 9.1 device reboot automatically when the system crashes?
- Wyse Management Suite-related questions
- ThinOS-related questions
Citrix ADC
ThinOS supports Citrix Application Delivery Controller (ADC), formerly known as Citrix NetScaler. The following authentication
methods are supported on ThinOS:
● Lightweight Directory Access Protocol (LDAP)
● RSA
● DUO
● SMS PASSCODE
● Native OTP
● Federated Authentication Service with Azure active directory
● OKTA
Timeout is enabled for Citrix ADC login by default. To disable the timeout, go to Advanced > Broker Settings > Citrix Virtual
Apps and Desktops Settings from the Wyse Management Suite policy settings or the Admin Policy Tool, and disable the
Netscaler/ADC Login Timeout option.
By default, the NetScaler/ADC Authentication using web-based login option is enabled for the applicable Citrix ADC server.
To disable the web-based login, go to Advanced > Broker Settings > Citrix Virtual Apps and Desktops Settings from
the Wyse Management Suite policy settings or the Admin Policy Tool, and disable the Netscaler/ADC Authentication using
web-based login option.
NOTE: Dell technologies recommends that you do not disable the Netscaler/ADC Authentication using web-based
login option.
Citrix two-factor authentication
ThinOS supports Citrix two-factor authentication that authenticates the identity of the user twice before granting access,
adding an extra level of security.
For local authentication, there must be a user profile that is created in the Citrix ADC database. For external authentication,
the username and password that is entered must be the same as registered in the authentication server. After a successful
validation of the username and password, the user is requested for another level of authentication.
ThinOS supports LDAP, RSA+LDAP, SMS Passcode, DUO, OKTA, and Azure MFA authentications by default. The user must only
provide the Citrix ADC gateway address.
To log in to NetScaler Gateway that uses LDAP with RSA authentication, you must select LDAP+RSA in the Wyse
Management Suite policy. You can also go to Admin Policy Tool and configure the NetScaler/ADC Authentication Method
option in the Citrix Broker Settings window.
For specific users who want to use Citrix ADC authentication methods, such as RSA, it is recommended that you configure the
NetScaler/ADC Authentication Method with RSA either using the Wyse Management Suite policy or Admin Policy Tool.
For specific users who want to use Citrix ADC authentication methods, such as LDAP with MFA, it is recommended that you
configure the NetScaler/ADC Authentication Method with LDAP either using the Wyse Management Suite policy or the
Admin Policy tool.
Configure Citrix ADC using LDAP and RSA
About this task
This section describes how to configure the Citrix ADC (formerly NetScaler) using LDAP and RSA authentication.
Steps
1. Go to NetScaler > NetScaler Gateway > Virtual Servers, and click Edit.
2. Set the primary and secondary authentications based on the following scenarios:
● If you use LDAP and RSA login, ensure that the primary authentication is LDAP and secondary authentication is RADIUS.
You must also ensure that the NetScaler Gateway Authentication Method in the Wyse Management Suite policy or
the Admin Policy Tool is configured as LDAP+RSA.
● If you use RSA and LDAP login, ensure that the primary authentication is RADIUS and secondary authentication is LDAP.
● If you use only LDAP login, ensure that the primary authentication is LDAP and secondary authentication is none.
68
Configuring connection brokers