© 2010 VMware Inc. All rights reserved Workshop for Existing Customer August 2010 Iwan ‘e1’...

© 2010 VMware Inc. All rights reserved

Workshop for Existing CustomerAugust 2010

Iwan ‘e1’ Rahabok, Senior Systems Consultant9119-9226 | [email protected] |

virtual-red-dot.blogspot.com | tinyurl.com/SGP-User-Group | facebook.com/e1ang

Confidential


View 4.5: What’s New (Technical)

Ice Breaker

About Me

Roles

Customers

Health check

VCAP Study Club

Partner trainer

User Group

Lab

About You

Company & Roles

What you want to get

vSphere experience

vSphere deployment info

Lesson Learnt: +/-

Confidential



Desktop Evolution

Desktop OS and apps locally installed

Few or no apps delivered from the Data Center

Client-Server Model Server Based Computing

Desktop environments have flexibility of running from hosted

server or client, depending on needs

Virtual Machine Computing

VDI (hosted) or ACE (local)

Some applications delivered from the Data Center

Few or no apps on the client Complete desktop runs on hosted server in data center or on local client

http://images.google.com/imgres?imgurl=http://www.join.es/images/datacenter.jpg&imgrefurl=http://www.join.es/datacenter.php&h=224&w=276&sz=15&tbnid=zbFcy7PMGMM5dM:&tbnh=88&tbnw=109&hl=en&ei=cQIgRJfWIp_SJIGqgaIK&sig2=qdvYG21Inl9RS-IzLL9reA&start=7&prev=/images?q=datacenter&svnum=10&hl=en&lr=&safe=off&rls=GGLG,GGLG:2005-29,GGLG:en&sa=N

http://images.google.com/imgres?imgurl=http://www.join.es/images/datacenter.jpg&imgrefurl=http://www.join.es/datacenter.php&h=224&w=276&sz=15&tbnid=zbFcy7PMGMM5dM:&tbnh=88&tbnw=109&hl=en&ei=cQIgRJfWIp_SJIGqgaIK&sig2=qdvYG21Inl9RS-IzLL9reA&start=7&prev=/images?q=datacenter&svnum=10&hl=en&lr=&safe=off&rls=GGLG,GGLG:2005-29,GGLG:en&sa=N

http://images.google.com/imgres?imgurl=http://fotopipe.ro/images/fujitsu-siemens-scenic-p320-(vfyp32865g13gb)-pc-desktop.jpg&imgrefurl=http://fotopipe.ro/index.php/cPath/21&h=150&w=177&sz=4&tbnid=o9Z0w26cfx3FlM:&tbnh=80&tbnw=95&hl=en&start=35&prev=/images?q=pc+desktop&start=20&svnum=10&hl=en&lr=&safe=off&rls=GGLG,GGLG:2005-29,GGLG:en&sa=N

http://images.google.com/imgres?imgurl=http://217.205.137.242/images/HP/OR590000031980.jpg&imgrefurl=http://www.mediaatlantic.com/section.php/1341/0&h=200&w=200&sz=5&tbnid=WEO6tS72hjlJOM:&tbnh=99&tbnw=99&hl=en&start=17&prev=/images?q=windows+xpe&svnum=10&hl=en&lr=&safe=off&rls=GGLG,GGLG:2005-29,GGLG:en&sa=N

http://images.google.com/imgres?imgurl=http://217.205.137.242/images/HP/OR590000031980.jpg&imgrefurl=http://www.mediaatlantic.com/section.php/1341/0&h=200&w=200&sz=5&tbnid=WEO6tS72hjlJOM:&tbnh=99&tbnw=99&hl=en&start=17&prev=/images?q=windows+xpe&svnum=10&hl=en&lr=&safe=off&rls=GGLG,GGLG:2005-29,GGLG:en&sa=N

http://images.google.com/imgres?imgurl=http://www.laptop.lt/PICTURES/r3000.jpg&imgrefurl=http://www.laptop.lt/&h=400&w=400&sz=14&tbnid=fqT2iZvjb9V_GM:&tbnh=120&tbnw=120&hl=en&start=13&prev=/images?q=laptop&svnum=10&hl=en&lr=&safe=off&rls=GGLG,GGLG:2005-29,GGLG:en

http://images.google.com/imgres?imgurl=http://fotopipe.ro/images/fujitsu-siemens-scenic-p320-(vfyp32865g13gb)-pc-desktop.jpg&imgrefurl=http://fotopipe.ro/index.php/cPath/21&h=150&w=177&sz=4&tbnid=o9Z0w26cfx3FlM:&tbnh=80&tbnw=95&hl=en&start=35&prev=/images?q=pc+desktop&start=20&svnum=10&hl=en&lr=&safe=off&rls=GGLG,GGLG:2005-29,GGLG:en&sa=N

Confidential



VMware Desktop Products

Present:

ThinApp 4.6

• Can be deployed stand-alone

Workstation 7.1

• For special use cases

View 4.5

• Complemented with vShield and ThinApp

Future:

Project Horizon

View 4.5: Delta Training – Revision 1.0

Confidential


View 4.5

Confidential


New Feature Overview

Increasing Scale and Efficiency• Brokering Architecture for 10,000 VM pod

• Scalable Admin UI in Flex

• Role-Based Delegated Administration

• Semi-Automatic Pools

• Thin Provisioning Support with vSphere

• View Composer Performance Optimizations (local storage, temp file/page file redirection)

Extensibility• Automation and Integration withPowershell

• SCOM Support

• Reporting and Auditing Enablement

System and User Diagnostics• Dashboard and System Monitoring

• User Troubleshooting

• System Troubleshooting

View Composer Enhancements• Support for SysPrep

• Refresh, Recompose & Rebalance for Non-Persistent Pools

• Tiered Storage Support

• Persistent Disk Management (Detach/Reattach/Archive)

Management Improvements• Kiosk Mode (MAC-based client authentication)

• Automated USB Redirection

• Location-based Printing

• Real-time SmartCardCert Revocation

ThinApp Assignment

Client LocalizationGerman, Japanese, French, and Simplified Chinese

Windows 7 Support

PCoIPSmartCard Support with PCoIP

FIPS Compliance

Local Mode Encryption, Smart Card, Replication & Policy Controls

Confidential



VMware View System Requirements

Connection Server Operating Systems

• Windows Server 2008 R2

• Windows Server 2003

View Agent

• Windows XP SP3

• Windows 7

View Client

• Windows 7

• Windows Embedded OS

• Mac OS X

• Linux

• Zero Client

Database

• Microsoft SQL / Oracle

Directory Services

• Active Directory / Novell eDirectory

Confidential



Confidential


Components of Desktop as a Managed Service

Re

du

ce

IT C

os

ts Usability Flexibility

UserExperience

View Client PCoIP Protocol Local Mode

Simplicity Efficiency Security

Management View Manager View Composer ThinApp

Availability Reliability Scalability

Platform vSphere for

Desktops

Confidential


Task WorkersKnowledge

WorkersPower Users Mobile Users

Well defined desktop

Predictable tasks

Controlled environment

Personalized desktop

Variety of tasks

Variety of apps

Multimedia content

High-end apps

Maximum performance


Multimedia content

Device flexibility

Disconnected access

Remote access


Addressing the Broadest Range of Users

VMware View

User Experience

Confidential


User ExperienceImportance of End-User Experience

A successful solution must also work for end-users

Usability Must not introduce additional

burden to end users Must be easy to use Must deliver a rich end-user

experience Flexibility

Must support a wide range of devices, applications and use cases

Confidential


User ExperienceEndpoint Device Flexibility

Desktop PC/Laptop

Windows, Mac OS or Repurposed PCs

Mobile Devices

iPad/iPhoneAndroid*

Thin Client/Zero Client

Broad IndustrySupport

* Wyse Pocket Cloud

Confidential


Uncompromised Usability

Flash Contentand Graphics

MultimediaRedirection

Progressive Buildof Graphics

TrueMulti-Monitor

USBRedirection

PrintOptimizations

User Experience

Confidential


Delivering The Best User Experience

Adaptive protocol for optimal user experience on LAN and WAN

End-to-end software solutionwith optional hardware

Addressing requirements fromthe task worker to power user

User Experience

Confidential


Deliver the best user experience for available network conditions

Build to lossless for best performance and highest resolution images

Ensure desktop is responsive even while rendering pages and graphics

Adaptable To Available Conditions User Experience

Confidential



View Client with Local Mode

End-User benefit

Virtual desktop is run on top of local operating system

Access desktop, applications and data regardless of network availability

Desktop synchronized with the datacenter

IT Organization benefit

Desktops managed centrally

Desktop image is encrypted

Extend IT security policies to local desktop

User ExperienceExtending View To New Use Cases

Mobile

Contractor BYOPCEOIT

PersonaAPPOS

PersonaAPPOS

PersonaAPPOS

PersonaAPPOS

PersonaAPPOS

Confidential



Location Based Printing

Details Automatically connect View desktop to

closest printer

Simplify printing for end users

Satisfy compliance requirements (healthcare, financial services)

Simple GUI interface for Administrators to link devices to printers

Use Cases Medical staff moving from room to

room in a hospital

Bank personnel moving around a branch office

Floor 1

Floor 2

Floor 3

Confidential



Kiosk Mode

Overview Support for public or shared end-point

Automatic login – no credentials required to access desktop

Authentication done through the application if needed

Benefit Simplified user experience – auto login, auto USB

redirection, no Windows error messages

Example Use Cases Education – labs/classrooms

Healthcare – nurses stations

State/Local - job placement, recruiting

Confidential


PCoIP Improvement and Changes

Improved WAN Performance Details on next slide

Smart Card Support &Online Certificate Status Protocol (OCSP)

• Certificate Revocation

Location Based Printing &Awareness

FIPS140-2 compliance application

Custom display topology with zero clients

Port Change to 4172

Confidential



PCoIPWAN Improvements in View 4.5

Four changes added to View 4.5 compared to improve WAN performance:

Improved image quality management

Improved network bandwidth estimation

Improved out of order packet resilience

Imaging selective packet retransmit

Anticipated Impacts on WAN Experience

Higher image quality without impacting bandwidth consumption

Improved imaging performance in low bandwidth situations

Improved performance when sharing network with multiple PCoIP sessions or other TCP traffic

No service degradation when tested with Juniper, F5, OpenVPN, and Cisco SSLVPN solutions

© 2009 Teradici Corporation

Confidential



Why PCoIP protocol does well on WAN

PCoIPprotocol uses host-side rendering to avoid client redirection latency limitations

PCoIP protocol uses UDP to transfer real-time audio and image data optimally (no resending of stale packets required)

PCoIP protocol dynamically adjusts image quality and frame rate based on available bandwidth

PCoIP protocol is able to use lossy compression on images and audio when network is constrained

Confidential



Planning for PCoIP

Plan for 200-250kbps average bandwidth for a typical basic office productivity desktop

Plan for 500kbps - 1 Mbps minimum peak bandwidth to provide headroom for bursts of display changes

Plan for 1Mbps per simultaneous user running 480p video

Plan for less than 70-80% network utilization

Assumptions are based on 8-10 hours continuously usage, Bandwidth estimation (250Kbps/0.80) * 5 = 1.5Mbps T1


Confidential



Win7 OS Support – Guest and Client

Supporting Windows 7 32-bit and 64-bit as a client and remote desktop

Virtual desktop related improvements

• Jumplist integration

• GPO PowerShell 2.0 cmdlets

• Location-aware printing

• RDP7

True multi-monitor and Multimedia redirection support

• MMR is enabled by default and cannot be disabled

• Aero support for RDP7 client


Confidential



View Client for Mac OS

View Client for Mac OS View Client supported on Mac OS 10.5

or greater

Mac user access to a View hosted Windows OS

Extend EOIT and BYOPC use cases to Mac users

Supports USB Redirection

Support for ThinPrint

Confidential



Local Mode: Mobility & Bring Your Own Computer

View Client with Local Mode (Type 2 Hypervisor)

Virtual desktop is checked-out to local endpoint and encrypted

Access desktop, applications and data regardless of network availability

Changes are checked in tothe datacenter when online

Extend IT security policies to local desktop

View Manager

Confidential



High Level Features Details

Run anywhere After initial checkout, desktop can be used at home or on the road w/o network connectivity.

Broad hardware support Works with almost any modern laptop today.

Encrypted and secure AES 128 or 256-bit Encryption of Desktop and centrally managed policies to control access and usage.

Data centralization & control Admin can pull all data back up to datacenter on demand.

High quality user experience Support for Win7 Aeroglass Effects, DirectX 9 w/3D, distortion-free sound & multimedia.

Reasonable CAPEX costs Up & running in with a single ESX box & local storage!

Disaster recovery options Can schedule data replication to server for rapid, seamless recovery from hardware loss or failure.

Single Image Management w/View Works off same management infrastructure & images as rest of View deployment.

View Client with Local Mode: Feature Overview

Confidential


Local Mode: What’s changed since experimental Offline VDI?


Capability Details

Robust Transfer Infrastructure

• Separate "Transfer Server" instances for scalable download/upload of VM data• VM data is optimized,compressed &deduplicated (e.g. no more copying page-file bits)• Optional use of 3rd party HTTP proxy caches for optimized provisioning to remote sites• View Composer derived base images can be pre-loaded via alternate media

Centralized Data Control

• Admin can initiate "replication" of user changes back to server on demand • Admin policy enforcement of whether or not users can initiate checkin or replication

Improved Security

• Checked out desktops all encrypted with AES (128-bit by default, 256-bit option)• SmartCard Authentication Support• Admin can remotely revoke end user access to a checked out desktop*• Admin can set policy for how frequently a client must get in touch with the server for

updates/enforcement (or be deactivated)*• Policy controls to allow/disallow access to USB devices like thumb-drives*

Disaster Recovery

• Delta-Disk replication can be scheduled to occur automatically • If client device is subsequently lost/destroyed, desktop can be easily reconstituted from

last replicated image

Infrastructure Cost Savings

• Pools can be configured as "local only" to save on server & storage CAPEX• Supports VM provisioning with View Composer…• Checked out VMs can be based on Linked Clones for further storage cost reduction

Latest Runtime Platform

• Uses latest VMware virtualization platform for great end user experience...• High quality multimedia & audio (play HD moves, YouTube videos, etc)• 3D with DirectX9c and Windows 7 Aeroglass Effects support• Hardware accelerated encryption/decryption with IntelAES-NI capable chipsets• Support for Windows 7, XP and Vista host and guest Operating Systems

Confidential



Local Mode Administration

All local desktops:

• Require user authentication to run

• Are completely encrypted

• Must periodically “heartbeat” with View Connection Server for management

Policies affecting local desktops:

• Can the desktop be used locally?

• How long can the local desktop go without server contact?

• What part of the local desktop should be replicated? (Linked clone desktops only)

• How often should the desktop be replicated?

• Is the user allowed to initiate replication? Check in? Rollback?

Rollback

• Discard a local desktop and make server side desktop live

Initiate Replication

• Schedule a one-off replication on next client contact


Confidential


Web Download Portal

Enhanced capability to manage

distribution of full View Windows

Client including PCoIP, ThinPrint

and USB redirection features

Ability to distribute current and

legacy versions of View Client

Broker URL automatically

passed to Windows client upon

launch

Experimental Java based Mac

and Linux Web Access no

longer supported (use installable

Mac Client in View 4 and View

Open Client for Linux)

Confidential


Simplified Sign On to Virtual Desktop and Apps

Simplified Sign On Authentication to Virtual Desktop

Windows Username/Password

Smart Cards/Proximity Cards

Client Based (MAC Address)

USB connected biometric devices

Integration with MS AD

No Domain change, schema change, password change

Supports “Tap and Go” Functionality

Integrates with SSO Vendors – Imprivata, Sentillion, Juniper, etc

Simplified Sign-on

Username:Password:

Connection Server

Confidential



Smart Card Authentication

Support PCoIP and RDP

Revoked certificates may be published through OCSP / CRL

Cached and encrypted PIN entry for Local Mode smart card logon

Storage of multiple credentials for public key infrastructure (PKI), one-time password (OTP), and static passwords on a single authentication device

Support for leading smart card manufacturers, remote access solutions, thin clients, and productivity applications

Capability to establish specific policies for certificates, PIN management and notification

Support for smart card standards direct SSO


Confidential



Confidential



Re

du

ce

IT C

os


UserExperience

View Client PCoIP Protocol Local Mode





Desktops

Confidential


Scalability

Broker Level

Broker Pod and Teaming

Federated Pool Management

Floating & Dedicated Pools

• Non-Persistent Pool Refresh & Re-Compose

View Composer

Tiered Storage

Local Disk Storage Support

Disposable Disks

“All Users” directory is no longer copied during customization

Thin-Provisioned Disks

Confidential


Admin Enhancements – You Asked For

View Manager

Admin UI ported to Adobe Flex

Dashboard View

Reporting DB

Delegated Admin

Security Server Setup Improvement

Desktop Administrator

User location and Filters

Individual VM view - Correlation with vCenter

Confidential



Integrated Dashboard UI


Confidential


Role-based Administration

• Delegated

administration

• Flexible Roles

• Helpdesk, etc

• Custom roles

• LDAP-based access

control on folders

Confidential


System and End-user Troubleshooting: Dashboard

• Surface key information

to administrators

• Drill-down as needed

• Locate root cause

• System health status

• View components

• vCenter components

• Status of desktops

• Status of client-hosted endpoints

• Datastore usage

• VMs on storage LUN

Confidential


System and End-user Troubleshooting: Diagnostics

Identify issues before

they impact users

• Users unable to authenticate

• Incorrect entitlements

• Machines not available

Confidential


System and End-user Troubleshooting: Supportability

•Assist end-user

• Send a message

Confidential


Reporting and Auditing Enablement: Events

Formally defined events

Events have a unique well defined identifier

Standard attributes include module, user, desktop, machine

Provides a unified view across View components

No more needing to review logs on each broker, agent!

Managed with a configurable database

Accessible with:

Vmware View Administrator

Direct access (SQL) for other reporting tools

Powershell

Vdmadmin provides textual reports (csv or xml)

Confidential



Reporting & Event DB – System Auditing and Monitoring


Confidential


View Management Pack for SCOM

View Management Pack provides:

Discovery: Automated mapping of View server deployments

Health monitoring: Visibility into the health of View servers

Service control: Ability to start/restart View services from SCOM console

Confidential



Federated Pool Management

Feature introduction

• Total number of VMs can be architected by View Manager(s) up to10,000 (per vCenter)

• Number of brokers: 5 + 2 (redundancy)

• DMZ Security server: 1 + 1 (redundancy)

• External/internal users: 20/80

• Concurrent online users: 100%

• Maximum sustained rate of logons: 5 per second across all brokers

Concepts Behind the Feature

• Management was the big cost when scaling.

• Federated Pool Management:

Each VM managed by one broker only

• Adding brokers does not increase management load.


Confidential



View Connection Servers (View Manager)

Connection Server

Transfer Server

Replica Server

Security Server

Connection Servers


Confidential



Transfer Server and Transfer Server Repository

The Transfer Server is a new View server role

• Required for checking out desktop if you plan to use Local Mode

• Installed in a VM with access to the datastores containing the desktop VMs

• Windows 2003 and 2008 32bit / 64bit

• Requires LSI parallel disk controller

• Stateless without UI using JMS

• Managed by View Manager

• Contains an Apache installation as client facing interface to read and write desktop data

• Multiple Transfer Servers can be used for scalability

Transfer Server Repository is a customer supplied UNC file share

• View Composer based pools requires Transfer Server for local mode

• Faster checkout

• Local path to Transfer Server itself

• A network share accessible to one or more Transfer Servers

Confidential



ThinApp Management

Feature

• Associate ThinApp assignment and delivery at desktop pool level

• Once entitled, it supports visibility into

ThinApp status on desktops

Event auditing

Benefits

• Integrates View and ThinApp functionality

• Providing ease of management and delivery capabilities

• Dashboard overview of current ThinApps in a client environment

Confidential


Integrated Image & Application Management

Simplified Application ManagementAssign ThinApp applications

Individual desktop Desktop pools

Deliver ThinApp applications to desktop

Full – executed locally Streaming – executed from datacenter

Application DashboardInventory of ThinApp applications managed by VMware View

Optimize assignment process per application group

Confidential



View Composer


Confidential



View Composer Updated Features

Support for SysPrep

Refresh, Recompose and Rebalance for Non-Persistent Pools

Tiered Storage Support

Persistent Disk Management

Detach/Reattach/Archive


Confidential



Sysprep Support

Feature introduction

• Support Sysprep and Quickprep for linked clone guest VMs

Why Sysprep

• Supported by Microsoft as the only customization method

• Generates each VM with unique SID

• Some software (NAC, AV etc) might requires unique SID for licensing control

Restrictions

• Once a pool is configured either Sysprep or Quickprep, cannot be changed

• Sysprep is only supported if the pool is using vSphere mode (homogeneous clusters of 4.0 or higher ESX servers)

• Recompose will generate a new SID for a VM created with Sysprep (Use with cautions)


Confidential



Sysprep Support


Confidential



Sysprep Support : Installation and Configuration

Installation

• Install Sysprep on the vCenter server

• Sysprep functionality is built into the Vista or Win7 OS

View Manager

• Pool must be configured to use vSphere mode

Linked clone master image

• View agent with View Composer option must be installed

• The master image does not need to be joined to the domain

• For Win7, Volume Licensing must be configured (Microsoft Key Management System server or Multiple Activation Key)

Other

• The domain controller must be reachable from all deployed clones


Confidential



View Composer Storage Savings

View Composer / View achieves storage cost reduction through:

• Allow storage over-commit

• Uses delta disks for OS disks and thin provisions user data disks

• Control the growth of storage via rebalance


Confidential



Persistent Disk Management

Persistent disks are now the first class objects by View Manager

Why?

• When VMs in dedicated pools were deleted, user data could be lost if the persistent disks were deleted

• Administrators have options to save user data disks (persistent disks) and manage them

Restrictions

• Recreate desktop can only be done with vSphere pools

• Attach Persistent Disk can only be attached to VMs in vSphere pools

• By default disks are archived at the root level of the same datastorethey are in. This can be changed if only a single disk is archived.

Confidential



Persistent Disk Management: Screen shots

Attached Disks

Confidential



Pool Creation: what happens at vCenter


Confidential



Part 2


Confidential



Partner ecosystem delivers SSL VPN based solutions

Cisco ASA

Juniper SA

F5 Edge Gateway

Additional partners in the future

Available Collateral

Solution briefs

Application Notes (pending)

Secure Access with View

Confidential



Confidential


Re

du

ce

IT C

os


UserExperience

View Client PCoIP Protocol Offline





Desktops


Confidential


First Thing First: The Foundation

•Proven on many large scale deployment

•>10000 desktops or mission critical app

Solid

•> 5000% smaller than Xen.

•MB vs GB

Small

•No general purpose OS. Much smaller size.

•Not compatible with Linux or Windows

Secure

•Purpose built. No dual-purpose like Xen

•Firmware, not Software. Patch, not Update.

Simple

•>100 desktops in 1 box

•Low latency for time-sensitive apps

Scalable

•Embedded into motherboard of servers. 0 disk

•Configured, not installed.

Standard

Confidential


Optimized Cloud Infrastructure Platform

Scalability: Built for the largest desktop environments

1000s of VMs/pod

Faster and more efficient vMotion leading to decreased migration time for VMs

Shrink and grow desktops based on demand and priority

• Dynamic Resource Allocation

High Performance

Optimized for desktop workloads

Performance acceleration due to lower memory swapping

Best Density

Increased desktop VM density – 16-20 VMs/core

High Availability and Business Continuity

Confidential



VMsafe: new paradigm

Current challenges for security software (e.g. anti virus):

No complete visibility in and below the OS

Running in the same context as the malware they are protecting against

Those in a safe context can’t see other contexts (e.g. network protection has no host visibility).

Need to see from below the OS, not within nor outside

Apps...

OS

HW

Apps

OS

HW

OS

HWLAN

Apps

OS

HW

Hypervisor…

Apps

OS

Confidential


Introspection Architecture

Security VM

VMsafe Library

Protected VM

VMsafe Hypervisor Extension

Protected VM

VMX

VMM

VMsafe Hypervisor Extension

VMX

VMM

VMX

VMM

ESXi kernel

Security

Agent

Confidential


VMware VMsafe

Creates a new, stronger layer of defense – fundamentally changes protection available for VMs running on VMware Infrastructure vs. physical machines

Protect the VM by inspection of virtual components (CPU, Memory, Network and Storage)

Complete integration and awareness of VMotion, Storage VMotion, HA, etc.

Provides an unprecedented level of security – “Virtual is more secure than Real”

Security VM

Security API

ESX Server

• HIPS

• Firewall

• IPS/IDS

• Anti-Virus

Confidential



Tiered Storage

What is tiered storage?

Place replicas on a single datastore separate from linked clones

The replicas can be shared by all linked clones

Why SSD for Replicas?

Use high-performance solid state disks (SSDs) to create replicas

Dynamically improve performance of linked clones

Notes

vSphere mode only (All ESX servers are 4.0 or higher)

Only a single datastore can be selected for replicas

The datastore for replicas must be connected to all ESX hosts in the cluster

Use with caution – as the replica datastore creates a single point of failure


Confidential



Tiered Storage


Confidential



Tiered Storage: Administration

The datastore used for replicas can be changed - it will only affect

• Newly created VM

• Recomposed VM

• Rebalanced VM

If a separate datastore for replicas is de-selected and cannot be found

• The new VMs, recomposed, or rebalanced VMs will use the OS datastores for replicas


Linked Clone

DT

OS/Delta 1

Replicas Base Images

Replicas

Confidential



View Composer Feature: Disposable Disk

What is disposable disk?

Windows and Windows applications writes temporary/paging files to disk

These updates are usually deleted after use and space be reused by guest OS

Why?

Before, the volume couldn’t be reclaimed by VMFS

When refreshed on linked clone, it caused persistent data in C:\ drive lost

Benefits:

Provides a zero impact to user and lightweight method to reclaim disk space of OS paging file and temporary files.


Confidential



View Composer: Disposable Disk

Disposable Disk

• Redirect paging and system temp files to a temporary disk removed upon VM powered off

Floating View Composer Desktop

Dedicated View Composer Desktop

Confidential



Extensibility with Location Based Printing

Leverage ThinPrintAutoConnectdll communicates over a virtual port with a ThinPrint .print Client

.print client query locally connected printers and network printers

Filter out certain network printers based on the location of the Client Host

Integrated via GPO editor in .ADM directory


Confidential



Extensibility with PowerShell

Provides a series of PowerShellcmdlets to administer View from the command-line (PowerCLI)

Allows management of:

• VI server entries

• View Licenses

• Global Config

• Remote and Local Desktop Sessions

• Desktops/Pools

• VMs and Physical Machines (running the Agent)

• Entitlements

Why?

• Allows for automation and scripting

• Provides extensibility to Administration tasks

• Seamless integration from View to vCenter


## Linked Clone operations accept individual machine ids.

## The below commands can be used to cover all the VMs in a pool.

Get-DesktopVM -pool_id<id> | Send-LinkedCloneRebalance -schedule (Get-Date)

Get-DesktopVM -pool_id<id> | Send-LinkedCloneRefresh -schedule (Get-Date)

Get-DesktopVM -pool_id<id> | Send-LinkedCloneRecompose -schedule (Get-Date) -parentVMPath<path to new VMfs>

Confidential



Extensibility in Core Broker

View Framework SDK

• A backend consolidation that extends vdmadmin

• PowerShellcmdlets defined on the .NET bridge

• SCOM support

Confidential



Extensibility with Kiosk Mode

Locked down View Access

Client device ID based provisioning and auto-logon

• Automatic generation of ClientIDbased user account in AD

Kiosk-ready View Client

• Suppression of GUI features

• Error reporting for script integration

Automated USB redirection

Client info support for in-guest printer mapping

ThinPrint GPO enabled for location based printing

Use cases: airport check-in, library, amusement park event kiosk, registration desk, ticketing…

Confidential



Extensibility with GPO Templates

Control View components behaviors domain-wide

Configure location-based printing

Creating an OU for View desktops

• vdm_agent.adm (allow protocol access, SSO, run commands etc)

• vdm_client.adm (pass endpoint client information to agent etc)

• vdm_server.adm (performance and log configuration etc)

• vdm_common.adm (common configuration)

• pcoip.adm (limit peak bandwidth)


Confidential



Localization

Localized in 4 languages

• French

• German

• Japanese

• Simplified Chinese (new)

View Client UI locale is selectable by host’s Regional & Language option

View Client is Unicode Enabled

• Able to display Unicode Data

VM display name

Snapshot name

Username


Confidential


How To Deploy(A sample approach)

Confidential



Desktop VMsInternalUsers

View Manager

Pilot group of 50–500 users

Internal, non-mobile users

Stage 1a - Enable Internal Users

Confidential



ThinApp

DMZ

Security Proxy

Stage 1b – Expand to External Users

View Manager

ExternalUsers

InternalUsers

Desktop VMs

Confidential



ThinApp

Stream Applications

DMZ

Security Proxy

Stage 1c – Integrate Application Virtualization

View Manager

ExternalUsers

InternalUsers

Desktop VMs

Confidential



ThinApp

Stream Applications

Stage 2a – Deliver Virtualized Applications

InternalUsers

Confidential



ThinApp

Stream Applications

Stage 2b – Virtual Desktops and Applications Internally

View Manager

InternalUsers

Desktop VMs

Confidential



ThinApp

Stream Applications

DMZ

Security Proxy

Stage 2c – Desktops and Apps to Internal/External Users

View Manager

ExternalUsers

InternalUsers

Desktop VMs

Confidential


Preliminary design

Prototyping

End-user pilots for pre-production use

Enterprise Class Desktop Design for large-scale production deployments

Best-practices based implementation

Proof of Concept

Education

Adopt Expand Standardize

VMware View/ThinApp

Jumpstarts

Plan & Design for VMware View

Plan and Design for VMware ThinApp

View Upgrade Service

Desktop Service Offerings

Desktop Virtualization Assessments

VMware View Pilot

VMware ICM Education Offerings

Confidential



© 2010 VMware Inc. All rights reserved Workshop for Existing Customer August 2010 Iwan ‘e1’...

Documents

Transcript of © 2010 VMware Inc. All rights reserved Workshop for Existing Customer August 2010 Iwan ‘e1’...