Changes to cipher suites required by Citrix Cloud

While most users are not affected, users who have configured their operating system’s usable ciphers may need to review and update this configuration to ensure that the ciphers available include those supported by the new traffic ingress method.

For TLS 1.2, the following cipher suites are supported. At least one of these must be enabled on all systems making contact with Citrix Cloud, including Cloud Connectors and FAS systems.

• TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
• TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
• TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
• TLS_DHE_RSA_WITH_AES_128_GCM_SHA256

More details can be found at https://support.citrix.com/article/CTX335879