Administrator Guide
Table Of Contents
- Dell Wyse ThinOS Version 9.0 Administrator’s Guide
- Contents
- Introduction
- Supported platforms
- What's new in ThinOS 9.0.4024 (MR3) release?
- What's new in ThinOS 9.0.3030 (MR2) release?
- What's new in ThinOS 9.0.2081 (MR1) release?
- What's new in Wyse Management Suite 2.1?
- What's new in ThinOS 9.0?
- What's new in Wyse Management Suite 2.0?
- Feature comparison between ThinOS 9.0 and ThinOS 8.6
- Other documents you may need
- Upgrading the ThinOS firmware
- Register ThinOS devices to Wyse Management Suite
- Download the ThinOS firmware, BIOS, and application packages
- Add ThinOS firmware to the repository
- Upgrade ThinOS 8.6 to ThinOS 9.x
- Upgrade ThinOS 9.x to later versions using Wyse Management Suite
- Upgrade ThinOS 9.x to later versions using Admin Policy Tool
- Upload and push ThinOS 9.x application packages using Wyse Management Suite
- Upload and install ThinOS 9.x application packages using Admin Policy Tool
- Firmware installation using Dell Wyse USB Imaging Tool
- Upgrade BIOS
- Edit BIOS settings
- Downgrade to ThinOS 9.0.1136 by using Wyse Management Suite
- Delete ThinOS application packages
- Getting started with ThinOS 9.0
- End User License Agreement
- Configure ThinOS using First Boot Wizard
- Configure account privileges for ThinOS
- Connect to a remote server
- Connecting a display
- Connecting a printer
- Desktop overview
- Using the taskbar
- Classic desktop features
- Configuring thin client settings and connection broker settings
- Configure ThinOS using Admin Policy Tool
- Locking the thin client
- Shut down and restart
- Battery information
- Login dialog box features
- View the system information
- Sleep mode
- Import certificates to ThinOS from Admin Policy Tool or Wyse Management Suite
- ThinOS system variables
- Configuring the global connection settings
- Configuring connectivity
- Configuring the network settings
- Configuring the remote connections
- Configure the broker setup
- Configure the General Options
- Configure the authentication settings
- Configure the Imprivata OneSign server
- Configure objects on Imprivata Server
- Enroll a proximity card with Imprivata OneSign
- Use smart card as proximity card
- Imprivata Bio-metric Single Sign-On
- Grace period to skip second authentication factor
- Imprivata OneSign ProveID Embedded
- Configure the OneSign Appliance
- Configure the OneSign Admin Console
- Install the Imprivata PIE package on ThinOS
- Enable PIE mode on ThinOS
- Uploading OneSign appliance SSL certificate
- Import the OneSign appliance SSL certificate automatically
- Import OneSign appliance SSL certificate manually
- Configure Fast User Switching on ThinOS
- Configuring the central configurations
- Configure the VPN Manager
- Configuring the connection broker—Citrix
- Citrix Workspace app feature matrix
- Configure the Citrix broker setup
- Citrix HDX RealTime Optimization Pack for Skype for Business
- Cisco Jabber Softphone for VDI
- Microsoft Teams Audio Optimization
- Citrix ADC
- Citrix Cloud services
- Automatically configure using DNS for email discovery
- Citrix HDX Adaptive transport (EDT)
- HDX Adaptive Display V2
- Browser Content Redirection
- HTML5 Video Redirection
- Windows Media Redirection
- Enable UDP audio in a Citrix session
- QUMU Video Optimization Pack for Citrix
- Keyboard layout synchronization in VDA
- Citrix Self-Service Password Reset
- Citrix SuperCodec
- Anonymous logon
- Configure the Citrix session properties
- Using multiple displays in a Citrix session
- USB Printer Redirection
- Configure the Citrix UPD printer
- Configuring the thin client local settings
- Using the system tools
- Using Wyse Management Suite
- Functional areas of Wyse Management Suite console
- Managing groups and configurations
- Edit the ThinOS 9.x policy settings
- Managing devices
- Managing Jobs
- Managing rules
- Managing Events
- Managing users
- Portal administration
- Troubleshooting your thin client
- Capture an HTTP log using ThinOS
- System crashes, freezes or restarts abruptly
- Broker agent login failure
- Citrix desktop and application crashes abruptly
- Cisco Jabber and Skype for Business call failure
- Request a log file using Wyse Management Suite
- View audit logs using Wyse Management Suite
- System log and trace information
- Upgrade or conversion troubleshooting and logs
- How to debug with new support beyond ThinOS 8?
- How to debug with same support in ThinOS 8?
- Common log files and locations
- Frequently Asked Questions
- ThinOS-related questions
- How do I upgrade from ThinOS 8.6 to 9.0?
- What should I do if the package installation fails?
- Is Wyse Management Suite 2.0 the only way to manage ThinOS 9.0?
- Is USB Imaging Tool method a possible option for upgrading to ThinOS 9.0?
- Can ThinOS 9.0 be installed on a PCoIP device?
- Does ThinOS 9.0 support zero desktop?
- Does ThinOS 9.0 support ThinOS configurations using INI files?
- iPhone cannot be redirected to the Citrix Desktop session
- Android smartphone is not displayed in the session when redirected or mapped
- Does Citrix Workspace app replace Citrix Receiver on ThinOS?
- What is Workspace mode on ThinOS 9.0?
- Can I enable Flash content to be rendered using a local Flash Player on ThinOS 9.0?
- How do I verify if HDX Enlightened Data Transport Protocol is active?
- How do I check if HTML5 Video Redirection is working?
- How do I check if QUMU Multimedia URL Redirection is working?
- How do I check if Windows Media Redirection is working?
- Is persistent logging supported in ThinOS 9.0?
- Is tls.txt file included in network traces on ThinOS 9.0?
- Will ThinOS 9.0 device reboot automatically when the system crashes?
- Wyse Management Suite-related questions
- ThinOS-related questions
The Remote Connections dialog box is displayed.
2. Click the Broker Setup tab and select Citrix from the Select Broker Type drop-down list.
3. Enter the IP address of the Citrix ADC FQDN server in the Broker Server field.
You can configure other options if required.
4. Click OK.
The NetScaler login window is displayed.
5. Launch the Google Authenticator application on your phone and get the passcode.
6. In the Citrix ADC login window, enter the passcode and click OK.
If the authentication is successful, you are logged into Citrix ADC.
Citrix Federated Authentication Service SAML with Microsoft
Azure Active Directory
ThinOS supports the Citrix Federated Authentication Service with Microsoft Azure Active Directory during single sign-on to
Citrix ADC using the Security Assertion Markup Language (SAML) based authentication. The FAS server delegates the user
authentication to the Microsoft ADFS server or Azure AD with Security Assertion Markup Language (SAML). Both, Azure AD
Multiple Factors Authentication (MFA) and Self-service password reset (SSPR), are supported.
If you access the Broker agent using SAML, lock terminal is not supported. When you try to use lock terminal, a message is
displayed where you can click either Continue to log off or click Cancel to stay on the screen.
Enable Azure Multiple Factor Authentication for Citrix ADC Single Sign-on
with SAML Authentication
Prerequisites
● Create an Azure AD user in Azure Active Directory.
● Enable the Multiple Factor Authentication (MFA) for the user.
● Add the user to Azure AD Citrix ADC (formerly NetScaler) Enterprise application users and groups.
● Ensure that the shadow account of the user exists in local domain users group.
● Ensure that the SAML authentication policy is enabled. For more information, see the NetScaler Gateway documentation at
docs.citrix.com.
About this task
This section describes how to log in to Citrix ADC using SAML with Azure Multiple Factor Authentication.
Steps
1. From the desktop menu, click System setup > Remote Connections.
The Remote Connections dialog box is displayed.
2. On the Broker Setup tab, select Citrix from the Broker type drop-down list.
3. Enter the Citrix ADC Gateway URL in the Broker field, and click OK.
The login window is displayed.
4. Enter the username of the Azure AD user and click Next.
5. Enter the initial password for the Azure AD user, and click Sign in.
6. In the More information required window, click Next.
7. On the Additional Security Verification page, do the following:
a. From the How should we contact you? drop-down list, select any one of the following methods:
● Authentication phone
● Mobile app
b. If you select Authentication phone, enter your phone number. If you select Mobile App, click Set up and follow the
on-screen instructions to add an account to the Microsoft authenticator app.
c. Click Save.
8. Enter the Azure AD username with the initial password again.
Configuring the connection broker—Citrix
81