DISA has released the Citrix Virtual Apps and Desktops (VAD) 7.x Security Technical Implementation Guide (STIG). The requirements of the STIG become effective immediately.
Customers who have a CAC that has DoD Certificates can obtain the STIG at https://cyber.mil/stigs/downloads/.
For those who do not have a CAC that has DoD Certificates, the STIG is also available from https://public.cyber.mil/stigs/downloads/.
If you are unable to find and download the content, please report broken link issues to the DoD Cyber Exchange Web team at firstname.lastname@example.org. For all questions related to the STIG content, please contact the DISA STIG Customer Support Desk at email@example.com.