Citrix Web Login using HTML5 - Application Chrome vs Edge behaviour
Citrix Web Login using HTML5 - Application Chrome vs Edge behaviour
Hi - we are running a pilot to access a Citrix published desktop using RDM and Cyberark / Privilege Session Manager to retrieve user name and password after entering MFA details.
We have the published desktop isolated via it's own Storefront server which is set to use HTML5 rather than ICA. The desktop auto launches once the user has successfully entered their MFA details.
However it only works if we set the Application to Google Chrome.
When we try Microsoft Edge the resulting HTML5 tab is blocked and we receive a Citrix Workspace error:
about:blank#blocked
Log Details:
[Mon, 11 Jul 2022 09:34:54 GMT] SESSION:|:Start
[Mon, 11 Jul 2022 09:34:54 GMT] SESSION:|:BROWSERINFO:|:navigator =Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.5060.114 Safari/537.36 Edg/103.0.1264.49
[Mon, 11 Jul 2022 09:34:54 GMT] SESSION:|:BROWSERINFO:|:os =WINDOWS
[Mon, 11 Jul 2022 09:34:54 GMT] SESSION:|:BROWSERINFO:|:browser =null;version=103
[Mon, 11 Jul 2022 09:34:54 GMT] SESSION:|:CONNECTION:|:ICA:|:ica type=autoOpener
[Mon, 11 Jul 2022 09:34:54 GMT] SESSION:|:CONNECTION:|:ICA:|:could not load ica file error=Window.opener or launchID is not present
[Mon, 11 Jul 2022 09:34:54 GMT] SESSION:|:CONNECTION:|:LOADTIME:|:ica failure time=455
[Mon, 11 Jul 2022 09:34:54 GMT] SESSION:|:CONNECTION:|:LOADTIME:|:script load =702
[Mon, 11 Jul 2022 09:34:54 GMT] SESSION:|:PREFERENCE:|:language=en-gb
[Mon, 11 Jul 2022 09:34:54 GMT] SESSION:|:CONNECTION:|:LOADTIME:|:language =1021
[Mon, 11 Jul 2022 09:34:54 GMT] SESSION:|:CONNECTION:|:initializing session
[Mon, 11 Jul 2022 09:34:54 GMT] RU: Init:|:Display Details : undefined
[Mon, 11 Jul 2022 09:34:54 GMT] RU: Init:|:Preferred Resolution : undefined
[Mon, 11 Jul 2022 09:34:54 GMT] RU: Init:|:Multimonitor Preference : undefined
[Mon, 11 Jul 2022 09:34:54 GMT] RU: Init:|:Scale to DPI : undefined
[Mon, 11 Jul 2022 09:34:54 GMT] RU: Add:|:Watcher : window-resize
[Mon, 11 Jul 2022 09:34:54 GMT] RU: Set:|:DefaultResolution : Fit_To_Window
[Mon, 11 Jul 2022 09:34:54 GMT] RU: Set:|:DisplayMode : Single Monitor
[Mon, 11 Jul 2022 09:34:54 GMT] RU: Set:|:Monitor Details : [{"bounds":{"left":0,"top":0,"width":1469,"height":672},"workArea":{"left":0,"top":0,"width":1469,"height":672}}]
[Mon, 11 Jul 2022 09:34:54 GMT] RU: Update:|:DisplayDetails : {"liXdw":1,"quQSH":true,"vDz8y":{"left":0,"top":0,"right":0,"bottom":0},"nV9FU":"Fit_To_Window","UkPO5":null,"devicePixelRatio":1,"PG51e":false,"BEGEG":0,"pGYVY":0,"ezM2h":false,"WZdBS":false,"yeziv":1,"jvHoy":1,"kpmFR":false,"canvx":{"width":1468,"height":672},"pIFKn":[{"bounds":{"left":0,"top":0,"width":1468,"height":672},"workArea":{"left":0,"top":0,"width":1468,"height":672}}],"UbBUD":[{"left":0,"top":0,"width":1468,"height":672}],"F5AvW":{"Fit_To_Window":{"width":1469,"height":672},"Use_Device_Pixel_Ratio":{"width":1469,"height":672}},"Hwbo4":{"left":0,"top":0,"width":1469,"height":672},"KxB2Q":{"left":0,"top":0,"width":1469,"height":672},"j1LBb":{"width":0,"height":0},"Hhx3f":{"X":0,"Y":0}}
[Mon, 11 Jul 2022 09:34:54 GMT] SESSION:|:CONNECTION:|:ICA:|:ClientVersion 21.3.0.4172
[Mon, 11 Jul 2022 09:34:54 GMT] SESSION:|:CONNECTION:|:UI:|:initializing ui-interface
[Mon, 11 Jul 2022 09:34:54 GMT] ERROR:|:error =Citrix Workspace app cannot launch app,Please verify that the ICA connection is available and that the server address is present.
Note that when Google Chrome is used it works without issue. Considering Chrome and Edge use the same engine I wouldn't have expected a behavioural difference. Would you know what's causing this issue?
Could it be company Group Policy perhaps? Does RDM read the GPO settings for Edge and Chrome or is it only emulating the different browsers?
Regards
Ben
All Comments (12)
Hello,
I suspect that you are launching your session in embedded mode. In that case, just so that you know, we are using 3rd party librairies to perform the integration inside RDM.
It's not the external browser that it's resized to fit into the tab. It's possible that Edge and Chrome doesn't react the same way because of this.
To avoid this kind of issue, we usually proposed to launch the session in external mode and install our web login to perform the authentication from your browser.
Best regards,
Jeff Dagenais
Hi Jeff
Thanks for the prompt reply.
Sadly I cannot test this:
I will speak with the Edge Admins here to see if I can get an exception in this instance for testing.
Regards
Ben
Hi - I've now been able to install the Edge extension for RDM.
However the credentials are not being injected:
I've changed the login form fill delay but that doesn't help.
Note that when this is set to embedded (Chrome or Edge) my credentials are injected without issues.
Is there anything else I could check?
Thanks
The only way to get RDM to inject the username and password is if I enable the Devolutions Web Login and open the page manually and then select the no. 1:
Is this the expected behaviour?
Ideally I'd like it to launch and prompt from within the tool rather than having the navigate manually first.
Regards
Hello,
In order for the Devolutions Web Login extension to retrieve and fill in your credentials automatically when you launch this website from RDM, you will need to go into the settings of the extension and make sure that the following options are enabled:
Let me know if that helps!
Best regards,
James Lafleur
Hi -
thanks again for the reply.
I'm still struggling to get this to work.
When I launch from the RDM tool the web page opens but gives me the following messages:
The username and password fields don't have the asterisk:
Yet the toolbar knows that I have an entry for the page:
If I open the page manually and click the *1 entry RDM prompts me for my RSA code and retrieves the username and password from the Cyberark safe but still doesn't inject the details. 
Settings are as follows:
I am clearly missing something obvious.
Hope you can help.
Regards
Ben
download.png
Hello,
Thank you for your reply,
Is the website you're encountering this issue on Public? Perhaps you could provide me with the URL so that I can test on my end?
If you prefer, I can contact you via private messages so that you can provide me with the URL.
Let me know,
Best regards,
Samuel Dery
Hi Samuel, thanks for the reply.
The URL is internally presented sadly.
Is there a document or video that I can follow? Or someone that I can share a session with perhaps over Teams? Big ask I know but we are licence holders.
Regards
Ben
Hi there - I wonder if this has anything to do with the issues that I am facing:
Unable to Launch Applications or Desktops Using HTTPS URL via Workspace App for HTML5 (citrix.com)
This would explain the various inconsistencies in behaviour regarding security warnings etc and why I see different behaviour on the web page via native Edge - specifically that I have allowed Insecure Websocket connections for the published site
Allowing insecure WebSocket connections | Damir's Corner (damirscorner.com)
Hello Benmorhall,
Thank you for your reply,
No problem, I can open a ticket for you in order to perform a remote session and have a look at your issue.
Would the email used for your account be the correct one for the ticket?
Let me know,
Best regards,
Samuel Dery
That would be great - email is the one used to register.
Thanks
Hello,
Thank you for your reply,
Perfect, I will create the ticket and contact you shortly.
Best regards,
Samuel Dery