New Features
Citrix
- Updated Citrix Workspace app 2109
Available Citrix Workspace Apps in this release: 2109 (default), 2104, and 2010 - New features:
- The user agent strings are added to the network traffic to make it easier to identify the origin of the request. .
Parameter |
|
Registry |
|
Value |
[default empty string]* (default) [App/AppVersion][Edit custom string] |
- Adaptive audio optimizes the audio settings, eliminating the need for manual configuration of audio quality on the VDA.
Parameter |
|
Registry |
|
Value |
on (default)/off |
- In case of a connection problem, a message is displayed in the desktop session.
Parameter |
|
Registry |
|
Value |
on (default)/off |
VMware Horizon
- Updated Horizon Client to version 2106.1
Firefox
- Updated Mozilla Firefox to version 91.3.0 ESR
- Added a check at boot-time which triggers a reset of the firefox profile if the usage is reaching a certain threshhold level.
This is to prevent a complete fill-up in which the browser would be not usable anymore.
Chromium
- Updated Chromium Browser to version 95.0.4638.69.
- Added support for hardware accelerated video decoding.
Power Term
- Updated Ericom PowerTerm LTC to version 14.0.1.62267. This fixes special characters of Eastern European languages.
- Removed legacy Ericom PowerTerm version 12.0.1.0.20170219.2-dev-34574 due to technical limitations.
Parallels Client
- Updated Parallels client to version 18.2
ThinLinc
- Updated ThinLinc client to version 4.13.0
Smartcard
- Updated Athena IDProtect smartcard library to version 7-20210902. This fixes smartcard logon using Horizon client and CRYPTAS TicTok v2 cards.
- Updated Gemalto/Thales SafeNet libraries to version 10.8.28.
- Added configuration parameters for options of PC/SC lite smartcard daemon which are needed in some cases:
Parameter |
|
Registry |
|
Value |
200 (default) |
Parameter |
|
Registry |
|
Value |
200 (default) |
Parameter |
|
Registry |
|
Value |
200 (default) |
Parameter |
|
Registry |
|
Value |
false (default) |
Cisco JVDI Client
- Updated Cisco JVDI to version 14.0.2
Cisco Webex
- Updated Cisco Webex Meetings VDI Clients to version 41.10.1.18.
Available Cisco WebEx Meetings VDI clients in this release: 41.10.1.18 (default), 41.8.4.11, and 41.6.7.16
Base system
- Add a prompt to accept the IGEL EULA for usage of IGEL Starter License.
- Updated IGEL EULA.
Window manager
- The location of the notification pop-up window is now configurable.
Parameter |
|
Registry |
|
Range |
[Top left][Bottom left][Top right][Bottom right][Center] |
Value |
Bottom right |
Shadowing/VNC
- Added a parameter to adjust the position of the shadow indicator popup window.
IGEL Setup | System > Remote Access > Shadow |
---|---|
Parameter |
|
Registry |
|
Range |
[Bottom left][ Bottom right ][Top left][Top right] |
Zoom Media Plugin
- Updated Zoom Plugin to version 5.8.0.36438
Available Zoom Plugins in this release: 5.8.0.36438(default), 5.7.6.20822, and 5.5.8.20606
Misc
- Added representation of all systemd units - installed in the firmware. This is now part of the generel support information in UMS (via Support Wizard).
TC Setup (Java)
- Updated TC Setup to version 6.9.7.
- Added display of Energy-Star Logo in Setup Tool for specific 3rd party devices and when requirements are fullfilled.
- Added a center snapping feature in TCSetup Display page.
Driver
- Updated of Olympus driver for dictation to version 4.0.1.
- Added driver forÿWiFi chipset MediaTek MT7921.
Security Fixes
Firefox
- Updated Mozilla Firefox to 91.3.0esr
- aka mfsa2021-49: CVE-2021-38503, CVE-2021-38504, CVE-2021-38506, CVE-2021-38507, MOZ-2021-0008, CVE-2021-38508, CVE-2021-38509, MOZ-2021-0007. (MOZ-* pending CVE assignment)
- aka mfsa2021-45: CVE-2021-38496, CVE-2021-38497, CVE-2021-38498, CVE-2021-32810, CVE-2021-38500, CVE-2021-38501.
- aka mfsa2021-40: CVE-2021-38495.
- aka mfsa2021-37: CVE-2021-29991.
- aka mfsa2021-33: CVE-2021-29986, CVE-2021-29981, CVE-2021-29988, CVE-2021-29984, CVE-2021-29980, CVE-2021-29987, CVE-2021-29985, CVE-2021-29982, CVE-2021-29989, CVE-2021-29990.
Chromium
- Fixed Chromium browser security issues CVE-2021-37973, CVE-2021-37972, CVE-2021-37971, CVE-2021-37970, CVE-2021-37969, CVE-2021-37968, CVE-2021-37967, CVE-2021-37966, CVE-2021-37965, CVE-2021-37964, CVE-2021-37963, CVE-2021-37962, CVE-2021-37961, CVE-2021-37960, CVE-2021-37959, CVE-2021-37958, CVE-2021-37957, CVE-2021-37956, CVE-2021-30633, CVE-2021-30632, CVE-2021-30631, CVE-2021-30630, CVE-2021-30629, CVE-2021-30628, CVE-2021-30627, CVE-2021-30626, CVE-2021-30625, CVE-2021-30624, CVE-2021-30623, CVE-2021-30622, CVE-2021-30621, CVE-2021-30620, CVE-2021-30619, CVE-2021-30618, CVE-2021-30617, CVE-2021-30616, CVE-2021-30615, CVE-2021-30614, CVE-2021-30613, CVE-2021-30612, CVE-2021-30611, CVE-2021-30610, CVE-2021-30609, CVE-2021-30608, CVE-2021-30607, CVE-2021-30606, CVE-2021-30604, CVE-2021-30603, CVE-2021-30602, CVE-2021-30601, CVE-2021-30600, CVE-2021-30599, CVE-2021-30598, CVE-2021-30597, CVE-2021-30596, CVE-2021-30594, CVE-2021-30593, CVE-2021-30592, CVE-2021-30591, CVE-2021-30590, CVE-2021-30589, CVE-2021-30588, CVE-2021-30587, CVE-2021-30586, CVE-2021-30585, CVE-2021-30584, CVE-2021-30583, CVE-2021-30582, CVE-2021-30581, CVE-2021-30580, CVE-2021-30579, CVE-2021-30578, CVE-2021-30577, CVE-2021-30576, CVE-2021-30575, CVE-2021-30574, CVE-2021-30573, CVE-2021-30572, CVE-2021-30571, CVE-2021-30569, CVE-2021-30568, CVE-2021-30567, CVE-2021-30566, CVE-2021-30565, CVE-2021-37976, CVE-2021-37975, CVE-2021-37974, CVE-2021-37977, CVE-2021-37979, CVE-2021-37980, CVE-2021-37981, CVE-2021-37982, CVE-2021-37983, CVE-2021-37984, CVE-2021-37985, CVE-2021-37986, CVE-2021-37987, CVE-2021-37988, CVE-2021-37989, CVE-2021-37990, CVE-2021-37991, CVE-2021-37992, CVE-2021-37993, CVE-2021-37996, CVE-2021-37994, CVE-2021-37995, CVE-2021-38003, CVE-2021-38002, CVE-2021-38001, CVE-2021-38000, CVE-2021-37999, CVE-2021-37998 and CVE-2021-37997.
Resolved Issues
VMware Horizon
- Fixed Zoom VDI Media Plugin.
Base system
- Fixed sporadic firmware update issue, where not all partitions were updated and features not usable. In 11.06.200 a reboot was necessary to get the missing partitions - the 11.06.210 substitutes the withdrawn 11.06.200.
Citrix
- Fixed rarely occurring startup issue with Selfservice and Storefront.
- The parameter HDX Adaptive Transport over EDT on the setup page
Sessions -> Citrix -> Citrix Global -> Options has been removed.
From now on, this value should be set by policy at Citrix server. - Added a workaround for Citrix client in order to correctly check the certificate validity period, independently of the local time zone. To enable the workaround, following registry key is needed:
Parameter |
|
Registry |
|
Value |
enabled/disabled (default) |
VMware Horizon
- Fixed omission of already mapped drives, which are created before the Horizon session is started. These drives are now usable in addition to the drives which are plugged during the runtime of the session.
Chromium
- Fixed set of multiple urls did not work properly for Chromium Browser Sessions
Network
- Improved behaviour of ethernet with 802.1X authentication under these conditions:
network.interfaces.ethernet.device%.ieee8021x.secure_only=false
and
network.interfaces.ethernet.device%.insistence=true
An authenticated and then an unauthenticated connection is tried not only on startup but also when a cable is plugged in late. * Fixed global no-proxy list getting effective via gconf2. This e.g. can help Citrix Workspace App using the right proxy configuration. * Fixed global no-proxy list: in certain cases entries were not getting effective.
Open VPN
- Added following new config parameter:
Registry |
|
Value |
extend parameter as string |
These parameters extend the arguments of the VPN command. Parameters that are already set in the GUI must not be used. Enter parameter starting with --
.
Example: --ping 10 --ping-restart 120
Base system
ÿFixed suspend action when closing the laptop lid, this is now working properly again. Fixed issue with losing all data on encrypted partitions on each reboot (happened only in rare and special cases).
* Fixed issues with update/downgrade firmware and encryption key handling. * Fixed vanishing of custom partition and chromium/firefox partition in a very special up/downgrade cycle. * Fixed missing bluetooth tray icon after login. * Fixed missing audio tray icon after login.
Conky
- Fixed compositor parameter windowmanager.wm0.variables.usecompositing - is not forced off anymore, if opacity is set to 255 for conky.
Window manager
- Fixed an issue where some taskbar settings from the TCSetup did not trigger the supposed changes.
VNC
- Fixed keyboard mapping in shadowing sessions, especially with backslash, euro and (at) keys in French keyboard layout.
Component Versions
Clients | |
---|---|
Amazon WorkSpaces Client |
3.1.9 |
Chromium |
95.0.4638.69-igel1635513789 |
Cisco JVDI Client |
14.0.2 |
Cisco Webex VDI plugin |
41.8.0.19732 |
Cisco Webex Meetings VDI plugin |
41.10.1.18 |
Cisco Webex Meetings VDI plugin |
41.6.7.16 |
Cisco Webex Meetings VDI plugin |
41.8.4.11 |
Known Issues
Citrix
- To launch multiple desktop sessions with Citrix HDX RTME and Citrix H.264
acceleration plugin the following registry key must be enabled:
Parameter |
|
Registry |
|
Range |
enabled / disabled (default) |
- This workaround is not applicable when "Enable Secure ICA" is active for the
specific delivery group. - Adding smartcard readers while the session is ongoing does not work. The reader is visible, but cannot be used due to permanently unknown reader status.
- Citrix has known issues with GStreamer 1.0 which describe problems with multimedia redirection of H.264, MPEG1 and MPEG2. GStreamer 1.0 is used if browser content redirection is active.
- Browser content redirection does not work with activated DRI3 and hardware accelerated H.264 deep compression codec.
- With activated DRI3 and an AMD GPU Citrix H.264 acceleration plugin could freeze. Selective H.264 mode (API v2) is not affected from this issue.
- Citrix H.264 acceleration plugin does not work with enabled server policy "Optimize for 3D graphics workload" in combination with server policy "Use video codec compression" -> *"For the entire screen"**.
- With Citrix Workspace app versions 21.04.0 and newer, smartcard authentication fails to forward the PIN correctly into the session for login. Instead the user has to input the PIN a second time within the session. The problem does not occur with Citrix Workspace App 20.10.0.
- From CWA 2109 onwards, Storebrowse creates a superfluous application icon named "to" without any function.
- An enabled ica.module.vdcamversion4support parameter can cause problems (e.g. no audio rates within session). Citrix advises not to use this parameter and will offer an alternative solution. For now, the parameter can be used at your own risk.
OSC Installer
- OSC not deployable with IGEL Deployment Appliance: New version 11.3 is required for 11.06 deployment.
VMware Horizon
- After disconnect of an RDP based session, the Horizon main window which contains the server or sessions overview, cannot be resized anymore.
- Copying Text from Horizon Blast sessions is not possible.
- The on-screen keyboard in Horizon appliance mode does not work correctly with local logon.
It is necessary to switch off local logon and enable the following two keys via IGEL registry:
userinterface.softkeyboard.autoshow
userinterface.softkeyboard.autohide - Zoom VDI Media Plugin versions below 5.8.0 make Horizon Client crash upon connection to the remote desktop in cases when TCSetup is running at the same time.
- When using the PCoIP protocol, the virtual channel provided by VMware used for serial port and scanner redirection can make Horizon client hang on logout from the remote session.
This happens when enabling scanner or serial port redirection.
The freeze does not occur if both redirection methods are enabled or none of them. The Blast Protocol isn't affected by this bug.
The respective settings can be found here in the IGEL Registry:
vmware.view.enable-serial-port-redir
vmware.view.enable-scanner-redir * Keyboard Input Source Language Synchronization works only when using a local layout which has deadkeys enabled.
If a keyboard layout is used which has deadkeys disabled (which is the default on IGEL OS), Horizon client falls back to en-US layout. * PCoIP sessions may crash in some cases. Please switch to Blast Protocol instead. In case H.264/HEVC encoding would be too demanding for your environment, you can switch it off. * Client drive mapping and USB redirection for storage devices can be switched on at the same time but there're problems under some circumstances:
Horizon Client tracks the drives which are dynamically mounted and adds them to the remote session using client drive mapping, I.e. USB redirection is then not used for theses devices.
However in case of devices like USB SD card readers, Horizon does not map them as client drives but forcefully uses USB-redirection which results in an unclean unmount.
As a work-around the IDs of these card readers can be added to IGEL USB access rules and denied.
Parallels Client
- Native USB redirection does not work with Parallels Client.
Network
- Wakeup from system suspend fails on DELL Latitude 5510
WiFi
- TP-Link Archer T2UH WiFi adapters does not work after system suspend/resume. Workaround: Disable system suspend at IGEL Setup > System > Power Options > Shutdown.
Cisco JVDI Client
- There may be a segfault shown in the logs (during logout of Citrix Desktop session). Occurs only when using Citrix Workspace App 2010 and Cisco JVDI.
Base system
- Hyper-V (Generation 2) needs a lot of memory (RAM). The machine needs a sufficient amount of memory allocated.
- Update from memory stick requires network online state (at least when multiple update stages are involved)
- Unreliable messages in user dialog for applying settings during boot. Could occur when new settings were fetched from the UMS.
Conky
- The right screen when using multiscreen environment may not be shown correctly.
Workaround: The horizontal offset should be set to the width of the monitor (e.g. if the monitor has a width of 1920, the offset should be set to 1920)
Firmware update
- On devices with 2 GB of flash storage it could happen that there is not enough space for updating all features. In this case, a corresponding error message occurs. Please visit [https://kb.igel.com/igelos-11.04/en/error-not-enough- space-on-local-drive-when-updating-to-igel-os-11-04-or-higher-32870765.html] for a possible solution and additional information.
Appliance Mode
- When ending a Citrix session in browser appliance mode, the browser is restarted twice instead of once.
- Appliance mode RHEV/Spice: spice-xpi firefox plugin is not longer supported. The "Console Invocation" has to allow 'Native' client (auto is also possible) and should be started in fullscreen to prevent any opening windows.
- Browser Appliance mode can fail when the Web URL contains special control characters like ampersands (& character).
Workaround: Add quotes at the beginning and the end of an affected URL. E.g.:
'https://www.google.com/search?q=aSearchTerm&source=lnms&tbm=isch'
Audio
- IGEL UD2 (D220) fails to restore the volume level of the speaker when the device used firmware version 11.01.110 before.
- Audio jack detection on Advantec POC-W243L does not work. Therefore, sound output goes through a possibly connected headset and also the internal speakers.
- UD3-M340C: Sound preferences are showing Headphone & Microphone, although not connected.
- After plugging in a USB headset, the sound does not change to this, although this is indicated in the sound preferences and in Pulseaudio.
Multimedia
- Multimedia redirection with GStreamer could fail when using Nouveau GPU driver.
Hardware
- Some newer Delock 62599 active DisplayPort to DVI (4k) adapters only work on INTEL-based devices.
Remote Management
- AIT feature with IGEL Starter License is only supported by UMS version 6.05.100 or newer.