XenMobile Server

Release Notes for XenMobile Server 10.16 Rolling Patch 4 Release

These release notes describe enhancements and fixed and known issues for XenMobile Server 10.16 Rolling Patch 4. You can download the XenMobile Server 10.16 Rolling Patch 4 software binaries at Sign-in to Download.

What’s new

  • Secure Hub APNs certificate renewal

    The Secure Hub Apple Push Notification Service (APNs) certificate for XenMobile Server 10.16 expires on February 9, 2025. This update renews the Secure Hub APNs certificate automatically to a new certificate which will expire on January 4, 2026.

  • Support for macOS 15

    XenMobile Server and Citrix Mobile productivity apps are now compatible with macOS 15, but don’t currently support all the new macOS 15 features.

  • Support for iOS 18

    XenMobile Server and Citrix Mobile productivity apps are now compatible with iOS 18, but don’t currently support all the new iOS 18 features.

  • Support for Android 15

    XenMobile Server and Citrix Mobile productivity apps now supports Android Enterprise device updates to Android 15. For more information about security and privacy benefits, see the Android developer documentation.

  • Update Public Rest API document to include device Lost Mode API

    Added the Lost Mode API in Public Rest API document.

  • Modify API call to be post body instead of URL

    Updated the API call to include the data in the request body rather than in the URL in Public Rest API document.

  • Support to block or restrict Apple Intelligence for iOS

    In Restriction policy for iOS, the following new settings are added to block access to Apple Intelligence (AI) or restrict some of the new features. These settings are applicable for iOS versions 18 and later. Default is On. For more information, see Restrictions Policy.

    • Genmoji
    • Image Playground
    • Image Wand
    • iPhone Mirroring
    • Personalized Handwriting Results
    • Writing Tools
  • Support to block or restrict Apple Intelligence for macOS

    In Restriction policy for macOS, the following new settings have been added to block access to Apple Intelligence (AI) or restrict some of the new features. These settings are applicable for macOS versions 15 and later. Default is On. For more information, see Restrictions Policy.

    • Image Playground
    • iPhone Mirroring
    • Writing Tools
  • Support to install OS updates immediately for iOS devices

In the Control OS Update device policy, a new radio button named Install ASAP is added in the OS update options for iOS. This feature allows you to install the previously downloaded OS updates immediately for iOS devices. For more information, see Control OS Update device policy for iOS.

  • Support preserve eSIM when the system erases the device

A new setting, Preserve eSIM on Erase, is added to the Restriction Policy. This setting ensures that the eSIM is preserved when the system erases the device due to multiple failed password attempts or when the Erase All Content and Settings option is selected in Settings > General > Reset. This feature is available for iOS versions 17.2 and later, with the default setting set to Off. For more information, see Restrictions Policy.

  • Support blocking of web distributed third party apps

In Restriction policy, a new setting Web Distribution apps is added to block the web distributed third party apps on iOS devices. This setting is applicable for iOS versions 17.5 and later. For more information, see Restrictions Policy.

  • Support to manage copy and paste functionality

In Restriction policy, a new setting Require managed pasteboard is added to allow copy and paste functionality to follow the same restrictions that you apply to Documents from managed apps in unmanaged apps and Documents from unmanaged apps in managed apps. Default is Off. For more information, see Restrictions Policy.

  • Support Samsung Enhanced Attestation v3

    Samsung Enhanced Attestation v3 improves XMS security functionality on Samsung Knox devices. For more information see Samsung Knox Enhanced Attestation. The XenMobile Server now includes a new property afw.knox.attestation.v3, which enables the feature that can improve XMS security functionality on Samsung Knox devices. By default, this property is set to True. For more information, see Server properties.

Fixed issues

  • Although the customer has enabled the FIPS setting to true, the logs continue to show it as disabled. Additionally, when the customer attempts to modify the database settings through the CLI, the XenMobile server Server fails to establish a connection to the database, preventing the update from being applied. [CXM-116863]
  • The XenMobile Server can’t successfully enroll new Android Enterprise devices because of performance issues that arise when SQL Server triggers alert messages. [CXM-116731]

For information about previous rolling patches for XenMobile Server 10.16.0, see Release notes for Rolling Patches.

Release Notes for XenMobile Server 10.16 Rolling Patch 4 Release