XenApp/XenDesktop USB Citrix Tested Device List

This article provides information regarding the USB devices used to test the generic USB remoting feature.

Note: Devices displayed are verified and any extra information required to configure them is included, with any limitations.

For device not given in below list, please refer Citrix Ready Marketplace.

Devices tested with XenDesktop 7.11 with Citrix Receiver for Windows 4.5. (see attached PDF for XenDesktop 7.6):

Device Type Win7, Win8, Win8.1, Win 10 Windows Server 2008 R2 Windows Server 2012 R2/2016
Optimized (Default) Generic Optimized(Default) Generic Optimized(Default) Generic
Mass Storage Device (PenDrive, USB Harddisk) Yes Yes Yes Yes Yes
Audio Device (Headset, Speaker) Yes Yes Yes Yes Yes
Webcam Device (Video Camera) Yes Yes Yes Yes Yes
SmartCard Readers * Yes Yes Yes
Keyboard * Yes Yes Yes Yes Yes
Mouse * Yes Yes Yes
3D Mouse Yes Yes
Scanner Yes Yes Yes Yes
Printer Yes Yes Yes Yes Yes
Phones (iOS) Yes Yes
Phones (Android) Yes Yes
Tablets (iOS)(Test with Ipad mini, Ipad3) Yes Yes
Tablets (Android) Yes Yes
Signature Pads (Wacom/Topaz) Yes Yes
Wacom Tablets Yes
DVD-Writer Yes Yes Yes Yes
USB 2.0 /3.0 hubs


  • *Are restricted for usb redirection by GPO (recommended settings) Hub as a device is not redirected to VDA, however any devices plugged into hub will redirect seamlessly Modem Devices are blocked by the default policy MTP mode for Samsung devices gets policy restricted due to modem exposure to client.
  • Phones and Tablets are optimized by “Client USB Plug and Play device redirection” policy which is by default enabled for Windows Server OS only

For Server OS

The USB client drivers must be compatible with RDSH for Windows 2012 R2.

Non fully virtualized device such as Smart Card Reader has no USB support because these devices utilize the dedicated service running for session 0 (first session) on Windows Server VDA.

Mass Storage for Server OS is supported from 7.11 VDA.

Audio Device for Server OS is supported from Receiver 4.5 and VDA 7.8.

Encrypted USB redirection and Bitlocker to go devices are currently not supported with Server OS.

Device List

Overview of generic USB redirection support by USB device type (Virtual Delivery Agent for Desktop or Server OS).

Serial Number Make Model Notes/Comments
Mass Storage: For Server OS supported from 7.11 and safe eject from taskbar for server OS is not supported currently]
1 Sandisk 1GB Cruzer Micro U3 U3 autorun and eject features do not work within a xendesktop session
2 Sandisk 4GB Titanium U3 U3 autorun and eject features do not work within a xendesktop session
3 Sandisk MicroSD Card Reader (2Gb, 8Gb xD tested)
4 SanDisk 2GB Extreme III Compact Flash
5 Sandisk SDCZ64096A1 4GB Cruzer Micro with U3 Technology U3 autorun and eject features do not work within a xendesktop session
6 SanDisk SDCZ50 4G
7 SanDisk Cruzer Micro Skin 2GB
8 Kingston 1GB USB 2.0 Migo Personal
9 Kingston 1GB Secure Digital Flash Card
10 Kingston Data Traveller Mini
11 Kingston 4GB DataTraveler
12 Seagate USB Hard drive ST305004exd (1TB)
13 Seagate USB 3.0 Hard Drive 1TB (Sno. 122B657IM)
14 Lexar 1GB Flash Drive
15 Lexar USB Dongle (xD Card)
16 Lexar 2GB Jump drive
17 Lexar USB flash memory stick
18 Laguna USB device (CDROM + Flash drive/U3)
19 Trust 7 in 1 Card reader
20 Sumvision 3.5″ USB2.0 & eSATA enclosure
21 Corsair Flash Voyager 16 GB (Corsair)
22 FujiFilm xD-Picture Card 512MB
23 ioMEga Floppy plus 7-in-1 Card Reader Device drivers must be installed with an administrator privilege prior using this device.
24 PC Line PCL-EFD2X 3 1/2 Floppy Drive
25 Freecom FS-50 DVD +/- RW Does not work for Server OS
26 LaCie D2 Blu-Ray BluRay playback not supported over a network connection.
27 LG BE06 Blu-Ray/HD Player Super Multi Blue BluRay playback not supported over a network connection.
28 Microsoft 32MB Flash Drive
29 Belkin 256MB Mass Storage Device
30 Buffalo DVSM-PN58U2VB Device drivers must be installed with an administrator privilege prior using this device.
31 Lenovo USB2.0 memory stick
32 Transcend 16GB JetFlash 700 USB 3.0 Flash Drive
33 SSK USB3.0 8G/SFD201
34 Netac USB3.0 U903 8G
35 SAMSUNG SE-218CB DVD Writer Does not work for Server OS
36 SafeStick flash drive BLOCKMASTER BM9930
1 Microsoft VX1000 LifeCam
2 Microsoft Lifecam VX-7000 The preview of video in Lync 2010 shows a black screen if device is connected to USB 3.0 port.
3 Microsoft Lifecam HD-3000
4 Logitech HD Pro C920 Sometimes, the device may appear in “Drives and Printers” on client even after launching a VDA session
5 Logitech C110
When a device is connected to VDA through the client, Sleep or hibernate action may be delayed on the Client machine.
6 Logitech QuickCam Pro 9000 Within session CPU usage might be high, when webcam is rediected to the VDA Session
7 Creative VF0520
8 Creative Live! Cam Notebook Webcam
9 Teclast TL-T838-NDE2S
10 Webcam Pro 9000
Incorrect webcam name may be shown in Devices tab in the Perference window.
11 HP True Vision Integrated webcam
Headsets/Speakers: [For Server OS enable audio through Generic USB from client policy, supported from Receiver 4.5 and XenApp / XenDesktop 7.8 ]
1 Logitech H330 (USB Headset)
2 Logitech S150 (USB Speakers)
3 Logitech H340 (USB Headset)
Audio experience may be unclear with Logitech H340 inside session
4 Plantronics Blackwire C435-M
5 Plantronics Blackwire C310-M
6 Plantronics Voyager Legend UC + BT300 (Bluetooth Headset + Bluetooth USB Adapter)
7 Plantronics Blackwire C320-M
8 SALAR KX235 USB headset-USB 2.0
HID style devices
1 Wacom Bamboo Fun A6 Wide Tablet Mouse class device. Blocked by default policy
2 Wacom Bambo One Mouse class device. Blocked by default policy
3 Wacom Bamboo touch tablet Mouse class device. Blocked by default policy
4 Bloomberg FreeBoard To use Bloomberg (Message) Key, Bloomberg Audio redirection has to be enabled.

If fingerprint scanner operation fails with high latency, then ICA custom channel has to be created for the scanner.
5 Bloomberg Starboard Requires two cables to be attached and for Server OS, enable Audio through Generic USB through the Client Policy
5 Vernier GoTemp Temperature Sensor
6 Vernier GoLink Multi Sensor
7 Kensington Orbit Mouse class device. Blocked by default policy
8 Microsoft Sidewinder X5 Mouse class device. Blocked by default policy, Requires Fingerprint driver locally
9 IBM KB with fingerprint reader Mouse class device. Blocked by default policy
Print/Scan Devices
1 Lexmark USB printer 800 series
2 Lexmark Multifunction USB printer scanner 1200 series
3 Canon Pixma MP620 -Multi Function Printer/Scanner
4 Canon iP5300 Printer
5 Canon CanScanLiDE 700F
6 Canon Lide 25 Colour Flatbed Scanner
7 Cannon Canon Pixma MP648
8 Canon CanoScan LiDE 110
9 HP ScanJet G3010
10 HP LaserJetP2014
11 HP DESKJET 2000
12 Epson Stylus DX4400 – multifunction AIO Printer/Scanner/Copier
13 WASP WCS3905 CCD barcode Scanner (USB) Displayed as a HID device, hence blocked by the default policy.
14 HP ScanJet Pro 3000S2 Twain 2.0 driver needs to be installed on client (Supported from 7.11)
1 Blackberry Pearl
2 Blackberry 8820
3 Blackberry 8320
4 Blackberry Curve 8900
5 Blackberry Curve 8520
6 Blackberry Curve 8900
7 Nokia N73 Mass storage mode working, PC Suite mode not available
8 Nokia N95 Mass storage mode working, PC Suite mode not available
9 Nokia 9500 Communicator Device can be visible on Receiver Toolbar by enabling the policy, but the device cant be redirected to the VDA session
10 HTC Tattoo
11 HTC Touch
12 Apple iPhone 3G Customers are not recommended to restore or upgrade the firmware on any Apple device. Device will remain in Restore mode until recovered on a physical machine.
13 Apple iPhone5 Customers are not recommended to restore or upgrade the firmware on any Apple device. Device will remain in Restore mode until recovered on a physical machine.
14 Polycom CX200 (Desktop Phone)
15 HP iPAQ 4150
16 Samsung Galaxy 4 MTP mode for samsung devices gets policy restricted due to modem exposed to client
17 Samsung Galaxy Core 2 MTP mode for samsung devices gets policy restricted due to modem exposed to client
18 Samsung Tablet MTP mode for samsung devices gets policy restricted due to modem exposed to client
HUBS: [Hubs are not supported as devices themselves however devices plugged into hubs work seamlessly]
1 Belkin 4-Port USB 2.0 Flex Hub
2 Plexus High Speed USB2.0 7 Port Powered Hub
3 Logitech 4 Port USB Hub
4 Dlink Dub-H4 USB 4 Port Hub
5 Belkin USB 2.0 4-Port Mini Hub
6 Belkin USB 4 PORT SLIM HUB (USB1.1)
7 Startech ST4202USBGB
8 Belkin 4-Port USB 2.0 Flex Hub
MODEM: [Modem Devices are blocked by the default policy]
1 LM Technologies Bluetooth EDR USB adapter
2 Trust USB Bluetooth Adaptor
3 Trust 56K USB Modem MD-1270
Security Devices
1 Microsoft Fingerprint Reader Win USB Only works with a local account and its known limitation of the vendor software
Digital Cameras
1 Canon PowerShot S70
2 Canon EOS 300D/Digital Rebel (Mass Storage)
3 Canon EOS 300D/Digital Rebel (PTP Mode)
4 Canon EOS 450D
5 Canon Ixus v3
6 Ricoh Capilio 500G Wide (Mass Storage)
7 Ricoh Capilio 500G Wide (Original Mode)
8 Nikon D70s (Mass Storage)
9 Nikon D70s (PTP Mode)
10 Fuji FinePix F31fd
Apple Devices: [ Customers are not recommended to restore or upgrade the firmware on any Apple device. Device will remain in Restore mode until recovered on a physical machine.]
1 Apple iPod Touch (16GB)
2 Apple iPod Shuffle (2GB)
3 Apple iPod Nano Ejecting an iPod Nano from within iTunes can take up to 3 minutes.
Other devices
1 Nipco USB Missile rocket launcher
2 Dictaphone Foot Control USB adapter
3 3DConnexion Space Navigator
4 3DConnexion Space Pilot Pro
5 3DConnexion Space Explorer
6 Startech SVID2USB2
7 Aigo DPF5170 (USB photo frame)
8 Plantronics Calisto 619 (Bluetooth Wireless Speakerphone + Bluetooth USB Adapter )
9 D-Link DBT-122 (Wireless USB Bluetooth Adapter)
10 Buffalo DVSM-PN58U2VB (USB DVD-RW) Does not work for Server OS
11 Wacom Signature Pad STU430 , STU 530
12 Wacom Tablet Intuos Pro Not supported for Server OS
13 Wacom interactive pen display DTU1031 Not supported for Server OS
14 Topaz Signature Pad T- LBK 460 Topaz driver is required on vda (if installation fails, extract driver package and then install driver Manually)
15 Philips Speech Mike Pro
USB host Controller for 3.0 port
1 Renesas Electronics USB 3.0 Host Controller Drivers
2 Microsoft USB Host Controller Drivers Supported from Windows 8 OS onwards.


  • No Related Posts

IOTA News: New details on Trive.Park, HOCHTIEF seeks developers

IOTA Smart Parking trive.park

Source: fietzfotos – Pixabay
  • The IOTA partner EDAG has released an update to its Trive.Park app and presented the hardware behind the system for parking garages.
  • Germany’s largest construction company, HOCHTIEF, is looking for a blockchain developer with practical project experience in the technologies of Hyperledger, Ethereum, Corda and IOTA.

The IOTA Foundation and EDAG Engineering GmbH, a service provider for the automotive industry and an engineering service provider for vehicle development, plant construction and prototype building, have already been working together for some time on various mobility issues. In September last year, for example, both partners presented the CityBot concept. Another joint project is the Trive.Park app, which was first announced in August 2019 and is already available for IOS and Android, as well as being used in various car parks in German cities.

Paying the car park barrier via IOTA token

Alexander Süssemilch from EDAG has published new details about this project in a blog post. As he describes, the developed platform is the only solution that car park operators can use immediately to digitally market parking offers in a car park. In addition, additional services such as interior cleaning, tyre changing or a delivery service could also be offered via the platform.

Booking is done via the Trive.Park app, and payment is made via Apple Pay, Google Pay or credit card. According to Süssemilch, the hardware for the entrance barrier was developed together with Datafox, making it an IoT device. An additional module was developed for the barrier opening, which includes a hardware component specially designed for car park barriers. The communication takes place via a Bluetooth transmitter, which can be seen in the following picture

Source: https://medium.com/@asuessemilch/die-parkhausschranke-wird-zum-iot-device-726e219c6b67

Via this Bluetooth transmitter it is possible to realize messages between the backend and the hardware of Datafox via the https protocol, a directed “Bluetooth beam” for indoor positioning from the barrier, software updates of the hardware “over the air” and logging and remote debugging. In addition, further sensors can be connected.

Süssemilch also emphasizes that the installation and operation of the hardware is very convenient for car park operators. Power can be supplied directly via the barrier system. The data connection to the backend, on the other hand, can be made via LAN, mobile radio or WLAN. With regard to IOTA, Süssemilch explained further:

In addition, the payment flow could be displayed using the cryptocurrency IOTA as an example, which in the future will help to reduce transaction costs.

When and if the implementation of IOTA payments beyond a proof of concept in the Trive.Park app will be realized remains to be seen.

The Largest German construction company is looking for blockchain developers for IOTA or Ethereum

Moreover, it became known yesterday that NEXPLORE Technology, which bundles the digital transformation processes of the largest German construction company, HOCHTIEF, is looking for a blockchain developer. The company develops specific technologies and software applications and is looking for a developer in the area of blockchain application development as well as Hyperledger fabric chaincode (smart contracts).

As a requirement, the job description states that practical project experience in the technologies of Hyperledger, Ethereum, Corda and IOTA is desirable:

You have first practical project experience with blockchain and DLT technologies (Hyperledger, Ethereum, Corda, IOTA…) and programming languages like NodeJS, TypeScript, Go and Java, JavaScript is required.

Follow us on Facebook and Twitter and don’t miss any hot news anymore! Do you like our price indices?

Last Updated on 4 March, 2020


Looking for solution to Monitor data leake through Bluetooth

I need a solution

Hello Team,

I am loking for help to monitor Bluetooth chennel, i have made changes in “Global Application Monitor” and added “fsquirt.exe” for Microsoft Windows Bluetooth. But still DLP Agent is not able to monitor Bletooth chennel.

You will find the below details to suggest me to get this done, i would require your help here. 

1. Number of Tiers – Tier 3

2. Oracle Server Version & Edition: Oracle Database 12c Standard Edition

3. DLP Version:


Mahesh Sejwar


+91 9717433140



Key Negotiation of Bluetooth Vulnerability

A weakness in the Bluetooth Basic Rate/Enhanced Data Rate (BR/EDR) protocol core specification exposes a vulnerability that could allow for an unauthenticated, adjacent attacker to perform a man-in-the-middle attack on an encrypted Bluetooth connection. The attack must be performed during negotiation or renegotiation of a paired device connection; existing sessions cannot be attacked.

The issue could allow the attacker to reduce the entropy of the negotiated session key that is used to secure a Bluetooth connection between a paired device and a host device. An attacker who can successfully inject a malicious message into a Bluetooth connection during session negotiation or renegotiation could cause the strength of the session key to be susceptible to brute force attack.

This advisory will be updated as additional information becomes available. There are no workarounds that address this vulnerability.

This advisory is available at the following link:

Security Impact Rating: Medium

CVE: CVE-2019-9506


Echo Cancellation from RTOP Does Not Work Completely


Users hear an echo when making a call using Skype for Business either as a published app or published desktop with HDX Real Time Optimization Pack 2.1 – 2.7


  • User A from Site 1 makes a call using published app Skype from Polycom phone (Headset) to User B at Site 2.
  • Audio is fine on both ends.
  • User A then places the call on Speaker on Polycom phone and User B from Site 2 can hear User B’s own echo when speaking.
  • User A does not hear echo from their end.
  • This Polycom phone does have Acoustic Echo Cancellation feature. The echo can be heard if the call starts out with speaker instead of headset. The customer does not experience this issue when using Skype on local machine bypassing Citrix.
  • Also, he tested this with another device (Windows Laptop) with built-in mic. The laptop was also experiencing the echo issue during a Skype call using Citrix.
Lowering the volume on the speaker phone does help, but defeats the purpose as they can barely hear the speaker audio.

This is a known limitation in versions up to 2.7. Although Citrix RTME contains some functionality for Echo Cancellation this feature is being constantly improved for increased coverage of various use-cases.

Citrix has introduced a new echo cancellation library (AEC3) in RTME 2.8 for Windows which provides the highest levels of echo removal.

WORKAROUND for older RTME versions up to 2.7:

At this time using a headset is highly recommended, especially in noisy environments.

When speakerphone functionality is needed, use Microsoft-certified USB speakerphones with built-in Acoustic Echo Cancellation (AEC)

Here is a list of SfB qualified devices http://partnersolutions.skypeforbusiness.com/solutionscatalog

If using PC speakers, place them as far as possible from the microphone and from any surfaces that may reflect the sound into the microphone


Advisory: Bleedingbit vulnerabilities do not affect Sophos Access Points

The BLE protocol or Bluetooth Smart is a protocol designed for providing low powered connections to various devices, such as IoT appliances. A set of two new zero-day vulnerabilities have been announced which could cause various access points(APs) with BLE protocol enabled to be exposed to remote code execution attacks.

Applies to the following Sophos product(s) and version(s)

Sophos UTM

Sophos AP

Sophos Firewall

Sophos Central Wireless

No Sophos Access Points are affected by this vulnerability. We recommend all customers check to ensure that their 3rd party wireless APs are not affected.

This article will be updated when information becomes available.

If you’ve spotted an error or would like to provide feedback on this article, please use the section below to rate and comment on the article.

This is invaluable to us to ensure that we continually strive to give our customers the best information possible.


Texas Instruments Bluetooth Low Energy Denial of Service and Remote Code Execution Vulnerability

On November 1st, 2018, Armis announced the presence of a Remote Code
Execution (RCE) or Denial of Service (DoS) vulnerability in the Bluetooth Low Energy (BLE) Stack on Texas
Instruments (TI) chips CC2640 and CC2650. This vulnerability has been assigned the Common Vulnerabilities and Exposures (CVE) ID of CVE-2018-16986.

The vulnerability is due to a memory corruption condition that may occur when processing malformed BLE frames. An attacker in close proximity to an affected device that is actively scanning could exploit the issue by broadcasting malformed BLE frames. A successful exploit may result in the attacker gaining the ability to execute arbitrary code or cause a denial of service condition on an affected device.

There are no workarounds that address this vulnerability.

This advisory is available at the following link:

Security Impact Rating: High

CVE: CVE-2018-16986


Three Steps to Cloud-Enabling YOUR Edge

EMC logo

The edge computing frontier is a bit like the wild West—technology providers trying to stake their claim of the $70B+ edge computing opportunity (by 2022/2023 according to ACG Research), customers trying to figure how to move into this new territory, and the industry still needing to do considerable work to specify edge nomenclatures, standards and architecture blueprints. As a result, the notion of the “edge” is still very much a matter of perspective: An IoT sensor gateway on an airplane helping predict engine failure(s) A low-power Bluetooth beacon in a mall (proximity-triggered couponing) A cell site … READ MORE


Update your feed preferences





submit to reddit