Today, we’re excited to announce the launch of Citrix Secure Private Access for multi-session virtual desktop infrastructure (VDI), a comprehensive solution designed to protect user privacy and data while ensuring seamless and secure remote access for all users regardless of their location or device. 

The rise of hybrid work and the increasing reliance on cloud-based infrastructure have made it essential to maintain rigorous security standards because:

  • Social engineering attacks are highly effective: Citrix Secure Private Access provides a modern authentication platform with granular contextual application access, which helps protect against social engineering attacks.
  • Ransomware attacks have spiked dramatically: Attackers are leveraging machine learning techniques to design more efficient attacks and evade detection systems, so protecting company data is even more critical. Citrix DaaS protects the cloud VDI by air-gapping the end-user device, while Citrix Secure Private Access provides access based on zero-trust principles.
  • Insider threats are more frequent: Employees, partners, and contractors who have unrestricted access to systems but misuse them intentionally or unintentionally create a high risk for organizations. Citrix Secure Private Access, a zero-trust network access solution that never trusts and always verifies each request, protects against such attacks.

As organizations continue to adopt VDI to enable remote work and streamline operations, security remains a top concern — particularly in multi-session VDI environments where multiple users share the same virtual machine. 

Key use cases

Common enterprise use cases for Citrix Secure Private Access include:

  • Better user experience: Allowing users to use any device (managed or unmanaged) when connecting to Cloud VDIs allows for the best experience.
  • Enhanced security: Because the end-user device is air-gapped from the cloud VDI, and because the Cloud VDI has no static VPN or Azure ExpressRoute connection to the company data center, company data is highly secure.
  • Maximum data protection: Citrix Secure Private Access provides zero trust network access (ZTNA) to verify the user’s identity, check the device’s compliance status, and allow access only to authorized applications. Depending on the cloud VDI configuration, users can save data only to the company’s enterprise storage and nowhere else.
  • Significant cost reduction: Static VPN and Azure ExpressRoute connections are expensive and complex to manage. Citrix Secure Private Access saves costs and reduces attack vectors by providing per-user zero trust network access with unlimited data transfer to company resources.

Secure your multi-session VDI environment

Citrix Secure Private Access provides granular per-user access based on zero-trust principles in multi-session VDI environments. Helping companies protect their corporate data and grant users least privileged application access.

In this short demo video, watch how two users connected to the same Windows 11 machine access private applications based on their context using Citrix Secure Private Access.

Set up Citrix Secure Private Access:

  1. Log in to Citrix Cloud and open Citrix Secure Private Access configuration
  2. Define applications (web or TCP/UDP)
    Note: Connector Appliances are required for secure traffic routing between Citrix Cloud and on-premises or cloud data centers
  3. Create access policies to grant application access to users and groups
  4. Get insights by monitoring user traffic and behavior

Diagram showing private application access from Cloud VDI via Citrix Secure Private Access.

Key benefits of Citrix Secure Private Access

Citrix Secure Private Access for multi-session VDI will transform the way you manage virtual desktops and provide access to private applications. Key benefits include:

Contextual access with conditional authentication: Citrix Secure Private Access allows you to configure conditional authentication to grant users access based on their context, such as group, location, or URL. 

Network security with zero trust architecture: Citrix Secure Private Access leverages a zero trust security model where every user, device, and session must be verified before access is granted. Regardless if users work from the corporate office or remotely, they will receive the same level of protection and verification.

Reduced costs: Multi-session OS VDI allows multiple users to access their virtual desktops that are hosted on the same machine, helping organizations save money on hardware costs. The Citrix Secure Access Agent application further enhances these cost savings by enabling users to access their virtual desktops from any device. It reduces the need for dedicated workstations without depending on express routes or legacy VPNs.

Ultimate flexibility without compromising security: Citrix Secure Private Access enables end users to connect from anywhere while enforcing access policies that only allow authorized application access.

Learn more about Citrix Secure Private Access

To learn more about how Citrix Secure Private Access can help you implement zero trust-based access to SaaS and private applications for all of your users, check out the Citrix Secure Private Access product documentation and community page.


Disclaimer: This publication may include references to the planned testing, release and/or availability of Cloud Software Group, Inc. products and services. The information provided in this publication is for informational purposes only, its contents are subject to change without notice, and it should not be relied on in making a purchasing decision. The information is not a commitment, promise or legal obligation to deliver any material, code, or functionality. The development, release, and timing of any features or functionality described for products remains at the sole discretion of Cloud Software Group, Inc.