CitrixBleed, or CVE-2023-4966, is now an infamous security vulnerability affecting Citrix NetScaler that allows attackers to hijack user sessions by stealing session authentication tokens. Unfortunately, it has affected many NetScaler customers including Xfinity, which lost data for 36 million customers as a result of CitrixBleed. There is no way to protect against CitrixBleed by configuring the NetScaler WAF to detect and block it.

In Citrix environments, where administrators face the ongoing challenge of managing resource-intensive processes, maintaining system stability, and optimizing performance, GripMatix's MetrixInsight for Citrix VAD/DaaS introduces a new suite of SCOM reports with a specific focus on detailed process-level CPU and memory usage. These reports offer an unprecedented depth of insight, enabling a more targeted and effective approach to system performance and resource management in Citrix environments.

Below are the most noteworthy updates from this year, highlighting our journey of continuous improvement and dedication.

MetrixInsight for Citrix Logon Simulator will be available to our valued MetrixInsight for Citrix VAD/DaaS customers, as part of our ongoing commitment to enhancing their Citrix monitoring experience. Stay tuned!

In the dynamic field of IT infrastructure monitoring, particularly for Citrix VAD and DaaS, the combination of SCOM and specialized point solutions like Citrix Director (CVAD) and Monitor (DaaS) represents a powerful, synergistic approach.

It is all in the numbers. And the numbers are not changing anytime soon. Citrix sites support over 400,000 customers. On average, an organization has 2-3 total FTEs managing and monitoring their Citrix environment. If you take those numbers, then roughly there is a demand for at least 1.2 million experts who need to be able to interact with Citrix in a knowledgeable way. Now on the supply side. We know there are 62 named Citrix Technology Professionals (CTPs) every year who are highly certified.

Over the past couple of years, I’ve carried out several audits on healthcare customers’ Citrix Virtual Apps and Desktops or DaaS deployments, and one of the checks that consistently stands out is the use of older Citrix Receiver and Workspace app versions connecting to the environment.

We’re thrilled to spotlight a notable addition to our MetrixInsight for VAD/DaaS suite: the SCOM MP crafted specifically for Citrix Federated Authentication Service(FAS). The suite seamlessly integrates the entire Citrix® infrastructure into SCOM, encompassing Citrix Virtual Apps and Desktops, Citrix DaaS, Citrix License Server, Citrix Provisioning Services, Citrix StoreFront, NetScaler ADC and now Citrix FAS.

Monitoring your enterprise end-user computing infrastructure is critical to ensuring systems are online and for proactive troubleshooting.

When I speak with IT professionals about end user experience and Citrix session performance, unsurprisingly, the subject of Citrix Workspace app versioning pops up. What is surprising, however, is their various degrees of attention toward maintaining up-to-date versioning of the Citrix Workspace app. Citrix Receiver was the previous iteration of Citrix Workspace app, but many organizations are still leveraging dated or unsupported Citrix Receiver versions.