Citrix
  • The TC Setup configuration page Options under Sessions -> Citrix -> Citrix StoreFront now gets deactivated if Citrix Receiver 13 is active.
  • Improved sound in Citrix ICA sessions by using high quality sound format as default.

    IGEL Setup > Sessions > Citrix > HDX Global > Options

    > Audio Bandwidth Limit in StoreFront sessions

    ica.wfclient.audiobandwidthlimit

    high / medium / low

    		 


Citrix Receiver 13
  • Added parameter to control the method used for hiding server side windows when switching between workspaces on client.

    ica.wfclient.twiwshidewindowtype

    1 / 2

    		1 - Hide server side windows by minimizing them. 2 - Hide server side windows by moving them to the right-bottom corner outside of the screen.


RDP/IGEL RDP Client 2
  • Improved COM Port Mapping: fixed waiting for event character.
  • Fixed connection issues with installed root CA certificate and a gateway connection-broker. The obsolete certificate acknowledge dialog for connections redirected from a trusted connection-broker is skipped now (RDP-8 compliance).
  • Fixed RDP client screen update issues for desktop sessions and improved the screen update performance.
  • Fixed printer mapping: a mapped printer is set as default printer inside the session if and only if it is the default printer on the thin client. Before this fix the first mapped printer was set as default printer.

RD Web Access
  • Fixed RD web access sessions not recognizing smartcards.
  • Fixed resize of Excel columns when published via RD web access.

VMware Horizon
  • Fixed input language synchronization of PCoIP sessions.

Network
  • Improved adoption of hostname from DHCP lease.

WiFi
  • Improved WiFi connection establishment with Broadcom chips.

genucard VPN
  • Fixed running into a too short timeout during rekeying and displaying an incorrect message about the rekeying result.
  • Added German translation for WiFi power error message and disabled the message getting shown when no WiFi scan is in progress.
  • Reactivated the internet disconnect button when a VPN connection is established.
  • Set the minimum size of the WiFi connection dropdown to two elements.
  • Fixed an issue with too short connection timeouts. This mostly occurred when establishing a WiFi connection.

Smartcard
  • Added a parameter to keep smartcards powered on after insertion. This might help in cases where powering on the card after a power off fails.

    scard.pcscd.poweron

    enabled / disabled

    		 

  • Fixed Active Directory log on with smart card: in some cases the sporadic error message "Unknown smartcard." appeared.

Base System
  • Fixed buddy update server functionality of devices with little free space on the local storage (e.g. Flash-Card or SSD smaller than 2GB).

    update.ftpd.provide_deactivated_services

    enabled / disabled

    		If this parameter is disabled, the buddy update server won't provide deactivated features.

  • Fixed kernel security issue CVE-2017-1000364.

Driver
  • 3DConnexion SpaceMouse Wireless is now also usable while connected via USB for charging.

X11 system
  • Fixed Spice desktop not being displayed on VIA based hardware.
  • Added a parameter to force a X server reconfiguration.

    x.xserver0.force_reconfig

    enabled / disabled

    		 

  • Fixed X server crashes on VIA based hardware.
  • Fixed VIA driver for VX900 based devices. The IGEL devices UD2 30/31 (D210), IZ2 30/31 (D210) and UD3 30/31 (M310) automatically use the VIA fallback driver since the new driver does not support these devices reliably enough at the moment. To disable the automatic fallback feature, disable registry key.

    x.drivers.via.fallback_vx855_auto_use

    enabled / disabled


Windowmanager
  • Fixed high memory consumption of taskbar when a image background is set.

Audio
  • Fixed sound output over DisplayPort in IGEL UD devices.
  • Fixed audio jack detection in IGEL UD2 (D220).
  • Fixed input and output recognizing for Sennheiser USB headsets.

TC Setup (Java)
  • Fixed an issue where the Linux 10 upgrade file couldn't be selected via local file browser within TC Setup in certain situations.

Remote Management
  • Fixed issue with Secure Shadowing by applying the JCE Unlimited Strength Jurisdiction Policy files and thus enabling higher strength encryption than the Oracle JRE uses by default.
  • Security fix for Secure Shadowing: do not accept weak SSL ciphers anymore. As the RC4 cipher is not accepted anymore, this change fixes Bar Mitzvah attacks (CVE-2015-2808). Due to the higher security demands Secure Shadowing with Java 6 based UMS version 4.07.100 and 4.08.100 is not supported anymore. Secure Shadowing is supported with UMS 5 and UMS 4.09.100. Only accept encryption ciphers with more then 128bit key length (disables AES128).
  • Added parameters to configure minimal allowed SSH cipher security.

    network.ssh_client.minimal_encryption_level

    128bit / 192bit / 256bit

    network.ssh_server.minimal_encryption_level

    128bit / 192bit / 256bit