12 February,20 at 03:35 PM
1. Citrix Linux VDA does not support session locking behavior on smart card removal
ref: https://docs.citrix.com/en-us/linux-virtual-delivery-agent/current-release/configuration/pass-through-authentication-with-smart-cards-.html#smart-card-removal-policy
Customers may want to consider configuring the "Interactive logon: Smart card removal behavior" group policy for the Windows machines where Citrix Receiver are running.
2. Citrix Linux VDA sessions by default will disable automatic screen lock. However users are still able to manually lock the session, but once a user locks the session, it cannot be unlocked using smart card. It is believed that this is the current limitation of Citrix VDA that the unlocking service (gdm-smartcard) does not share the "smart card context" with the user session.
3. It has been discovered that a user session may be able to access a smart card associated with another Citrix VDA session by guessing the CITRIX_SESSION_ID environment variable.
For example,