Advisory: Receiver for iOS 7.2.2 Security Changes

This article is intended for Citrix administrators and technical teams only. Non-admin users must contact their company’s Help Desk/IT support team and can refer to CTX297149 for more information.


As part of new security enhancements to the Citrix Receiver clients for the Apple platforms, Receiver for iOS 7.2.2 introduced a new, stricter, validation policy for server certificates. With this change the Receiver client uses all certificates supplied by NetScaler Gateway during the SSL certificate validation process. This includes all intermediate and root certificates associated with the server certificate. In the event that any certificate in the chain is missing, not trusted, or incorrect, Receiver would fail to establish the connection. This validation policy is stricter than typical web browsers enforce.

Given the customer issues caused by these changes, Citrix has reverted the security changes as of Receiver for iOS version 7.2.3.

Recommendation

Citrix recommends that customers upgrade to the current Receiver for iOS version in the Apple App store where changes to the SSL certificate validation policy have been reverted.

Related:

  • No Related Posts

Leave a Reply