© 2010 VMware Inc. All rights reserved Workshop for Existing Customer August 2010 Iwan ‘e1’...
-
date post
15-Jan-2016 -
Category
Documents
-
view
214 -
download
1
Transcript of © 2010 VMware Inc. All rights reserved Workshop for Existing Customer August 2010 Iwan ‘e1’...
© 2010 VMware Inc. All rights reserved
Workshop for Existing CustomerAugust 2010
Iwan ‘e1’ Rahabok, Senior Systems Consultant9119-9226 | [email protected] |
virtual-red-dot.blogspot.com | tinyurl.com/SGP-User-Group | facebook.com/e1ang
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
Ice Breaker
About Me
Roles
Customers
Health check
VCAP Study Club
Partner trainer
User Group
Lab
About You
Company & Roles
What you want to get
vSphere experience
vSphere deployment info
Lesson Learnt: +/-
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
Desktop Evolution
Desktop OS and apps locally installed
Few or no apps delivered from the Data Center
Client-Server Model Server Based Computing
Desktop environments have flexibility of running from hosted
server or client, depending on needs
Virtual Machine Computing
VDI (hosted) or ACE (local)
Some applications delivered from the Data Center
Few or no apps on the client Complete desktop runs on hosted server in data center or on local client
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
VMware Desktop Products
Present:
ThinApp 4.6
• Can be deployed stand-alone
Workstation 7.1
• For special use cases
View 4.5
• Complemented with vShield and ThinApp
Future:
Project Horizon
View 4.5: Delta Training – Revision 1.0
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5
Confidential
© 2010 VMware Inc. All rights reserved
New Feature Overview
Increasing Scale and Efficiency• Brokering Architecture for 10,000 VM pod
• Scalable Admin UI in Flex
• Role-Based Delegated Administration
• Semi-Automatic Pools
• Thin Provisioning Support with vSphere
• View Composer Performance Optimizations (local storage, temp file/page file redirection)
Extensibility• Automation and Integration withPowershell
• SCOM Support
• Reporting and Auditing Enablement
System and User Diagnostics• Dashboard and System Monitoring
• User Troubleshooting
• System Troubleshooting
View Composer Enhancements• Support for SysPrep
• Refresh, Recompose & Rebalance for Non-Persistent Pools
• Tiered Storage Support
• Persistent Disk Management (Detach/Reattach/Archive)
Management Improvements• Kiosk Mode (MAC-based client authentication)
• Automated USB Redirection
• Location-based Printing
• Real-time SmartCardCert Revocation
ThinApp Assignment
Client LocalizationGerman, Japanese, French, and Simplified Chinese
Windows 7 Support
PCoIPSmartCard Support with PCoIP
FIPS Compliance
Local Mode Encryption, Smart Card, Replication & Policy Controls
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
VMware View System Requirements
Connection Server Operating Systems
• Windows Server 2008 R2
• Windows Server 2003
View Agent
• Windows XP SP3
• Windows 7
View Client
• Windows 7
• Windows Embedded OS
• Mac OS X
• Linux
• Zero Client
Database
• Microsoft SQL / Oracle
Directory Services
• Active Directory / Novell eDirectory
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
Confidential
© 2010 VMware Inc. All rights reserved
Components of Desktop as a Managed Service
Re
du
ce
IT C
os
ts Usability Flexibility
UserExperience
View Client PCoIP Protocol Local Mode
Simplicity Efficiency Security
Management View Manager View Composer ThinApp
Availability Reliability Scalability
Platform vSphere for
Desktops
Confidential
© 2010 VMware Inc. All rights reserved
Task WorkersKnowledge
WorkersPower Users Mobile Users
Well defined desktop
Predictable tasks
Controlled environment
Personalized desktop
Variety of tasks
Variety of apps
Multimedia content
High-end apps
Maximum performance
Personalized desktop
Multimedia content
Device flexibility
Disconnected access
Remote access
Personalized desktop
Addressing the Broadest Range of Users
VMware View
User Experience
Confidential
© 2010 VMware Inc. All rights reserved
User ExperienceImportance of End-User Experience
A successful solution must also work for end-users
Usability Must not introduce additional
burden to end users Must be easy to use Must deliver a rich end-user
experience Flexibility
Must support a wide range of devices, applications and use cases
Confidential
© 2010 VMware Inc. All rights reserved
User ExperienceEndpoint Device Flexibility
Desktop PC/Laptop
Windows, Mac OS or Repurposed PCs
Mobile Devices
iPad/iPhoneAndroid*
Thin Client/Zero Client
Broad IndustrySupport
* Wyse Pocket Cloud
Confidential
© 2010 VMware Inc. All rights reserved
Uncompromised Usability
Flash Contentand Graphics
MultimediaRedirection
Progressive Buildof Graphics
TrueMulti-Monitor
USBRedirection
PrintOptimizations
User Experience
Confidential
© 2010 VMware Inc. All rights reserved
Delivering The Best User Experience
Adaptive protocol for optimal user experience on LAN and WAN
End-to-end software solutionwith optional hardware
Addressing requirements fromthe task worker to power user
User Experience
Confidential
© 2010 VMware Inc. All rights reserved
Deliver the best user experience for available network conditions
Build to lossless for best performance and highest resolution images
Ensure desktop is responsive even while rendering pages and graphics
Adaptable To Available Conditions User Experience
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
View Client with Local Mode
End-User benefit
Virtual desktop is run on top of local operating system
Access desktop, applications and data regardless of network availability
Desktop synchronized with the datacenter
IT Organization benefit
Desktops managed centrally
Desktop image is encrypted
Extend IT security policies to local desktop
User ExperienceExtending View To New Use Cases
Mobile
Contractor BYOPCEOIT
PersonaAPPOS
PersonaAPPOS
PersonaAPPOS
PersonaAPPOS
PersonaAPPOS
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
Location Based Printing
Details Automatically connect View desktop to
closest printer
Simplify printing for end users
Satisfy compliance requirements (healthcare, financial services)
Simple GUI interface for Administrators to link devices to printers
Use Cases Medical staff moving from room to
room in a hospital
Bank personnel moving around a branch office
Floor 1
Floor 2
Floor 3
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
Kiosk Mode
Overview Support for public or shared end-point
Automatic login – no credentials required to access desktop
Authentication done through the application if needed
Benefit Simplified user experience – auto login, auto USB
redirection, no Windows error messages
Example Use Cases Education – labs/classrooms
Healthcare – nurses stations
State/Local - job placement, recruiting
Confidential
© 2010 VMware Inc. All rights reserved
PCoIP Improvement and Changes
Improved WAN Performance Details on next slide
Smart Card Support &Online Certificate Status Protocol (OCSP)
• Certificate Revocation
Location Based Printing &Awareness
FIPS140-2 compliance application
Custom display topology with zero clients
Port Change to 4172
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
PCoIPWAN Improvements in View 4.5
Four changes added to View 4.5 compared to improve WAN performance:
Improved image quality management
Improved network bandwidth estimation
Improved out of order packet resilience
Imaging selective packet retransmit
Anticipated Impacts on WAN Experience
Higher image quality without impacting bandwidth consumption
Improved imaging performance in low bandwidth situations
Improved performance when sharing network with multiple PCoIP sessions or other TCP traffic
No service degradation when tested with Juniper, F5, OpenVPN, and Cisco SSLVPN solutions
© 2009 Teradici Corporation
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
Why PCoIP protocol does well on WAN
PCoIPprotocol uses host-side rendering to avoid client redirection latency limitations
PCoIP protocol uses UDP to transfer real-time audio and image data optimally (no resending of stale packets required)
PCoIP protocol dynamically adjusts image quality and frame rate based on available bandwidth
PCoIP protocol is able to use lossy compression on images and audio when network is constrained
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
Planning for PCoIP
Plan for 200-250kbps average bandwidth for a typical basic office productivity desktop
Plan for 500kbps - 1 Mbps minimum peak bandwidth to provide headroom for bursts of display changes
Plan for 1Mbps per simultaneous user running 480p video
Plan for less than 70-80% network utilization
Assumptions are based on 8-10 hours continuously usage, Bandwidth estimation (250Kbps/0.80) * 5 = 1.5Mbps T1
View 4.5: Delta Training – Revision 1.0
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
Win7 OS Support – Guest and Client
Supporting Windows 7 32-bit and 64-bit as a client and remote desktop
Virtual desktop related improvements
• Jumplist integration
• GPO PowerShell 2.0 cmdlets
• Location-aware printing
• RDP7
True multi-monitor and Multimedia redirection support
• MMR is enabled by default and cannot be disabled
• Aero support for RDP7 client
View 4.5: Delta Training – Revision 1.0
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
View Client for Mac OS
View Client for Mac OS View Client supported on Mac OS 10.5
or greater
Mac user access to a View hosted Windows OS
Extend EOIT and BYOPC use cases to Mac users
Supports USB Redirection
Support for ThinPrint
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
Local Mode: Mobility & Bring Your Own Computer
View Client with Local Mode (Type 2 Hypervisor)
Virtual desktop is checked-out to local endpoint and encrypted
Access desktop, applications and data regardless of network availability
Changes are checked in tothe datacenter when online
Extend IT security policies to local desktop
View Manager
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
High Level Features Details
Run anywhere After initial checkout, desktop can be used at home or on the road w/o network connectivity.
Broad hardware support Works with almost any modern laptop today.
Encrypted and secure AES 128 or 256-bit Encryption of Desktop and centrally managed policies to control access and usage.
Data centralization & control Admin can pull all data back up to datacenter on demand.
High quality user experience Support for Win7 Aeroglass Effects, DirectX 9 w/3D, distortion-free sound & multimedia.
Reasonable CAPEX costs Up & running in with a single ESX box & local storage!
Disaster recovery options Can schedule data replication to server for rapid, seamless recovery from hardware loss or failure.
Single Image Management w/View Works off same management infrastructure & images as rest of View deployment.
View Client with Local Mode: Feature Overview
Confidential
© 2010 VMware Inc. All rights reserved
Local Mode: What’s changed since experimental Offline VDI?
View 4.5: Delta Training – Revision 1.0
Capability Details
Robust Transfer Infrastructure
• Separate "Transfer Server" instances for scalable download/upload of VM data• VM data is optimized,compressed &deduplicated (e.g. no more copying page-file bits)• Optional use of 3rd party HTTP proxy caches for optimized provisioning to remote sites• View Composer derived base images can be pre-loaded via alternate media
Centralized Data Control
• Admin can initiate "replication" of user changes back to server on demand • Admin policy enforcement of whether or not users can initiate checkin or replication
Improved Security
• Checked out desktops all encrypted with AES (128-bit by default, 256-bit option)• SmartCard Authentication Support• Admin can remotely revoke end user access to a checked out desktop*• Admin can set policy for how frequently a client must get in touch with the server for
updates/enforcement (or be deactivated)*• Policy controls to allow/disallow access to USB devices like thumb-drives*
Disaster Recovery
• Delta-Disk replication can be scheduled to occur automatically • If client device is subsequently lost/destroyed, desktop can be easily reconstituted from
last replicated image
Infrastructure Cost Savings
• Pools can be configured as "local only" to save on server & storage CAPEX• Supports VM provisioning with View Composer…• Checked out VMs can be based on Linked Clones for further storage cost reduction
Latest Runtime Platform
• Uses latest VMware virtualization platform for great end user experience...• High quality multimedia & audio (play HD moves, YouTube videos, etc)• 3D with DirectX9c and Windows 7 Aeroglass Effects support• Hardware accelerated encryption/decryption with IntelAES-NI capable chipsets• Support for Windows 7, XP and Vista host and guest Operating Systems
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
Local Mode Administration
All local desktops:
• Require user authentication to run
• Are completely encrypted
• Must periodically “heartbeat” with View Connection Server for management
Policies affecting local desktops:
• Can the desktop be used locally?
• How long can the local desktop go without server contact?
• What part of the local desktop should be replicated? (Linked clone desktops only)
• How often should the desktop be replicated?
• Is the user allowed to initiate replication? Check in? Rollback?
Rollback
• Discard a local desktop and make server side desktop live
Initiate Replication
• Schedule a one-off replication on next client contact
View 4.5: Delta Training – Revision 1.0
Confidential
© 2010 VMware Inc. All rights reserved
Web Download Portal
Enhanced capability to manage
distribution of full View Windows
Client including PCoIP, ThinPrint
and USB redirection features
Ability to distribute current and
legacy versions of View Client
Broker URL automatically
passed to Windows client upon
launch
Experimental Java based Mac
and Linux Web Access no
longer supported (use installable
Mac Client in View 4 and View
Open Client for Linux)
Confidential
© 2010 VMware Inc. All rights reserved
Simplified Sign On to Virtual Desktop and Apps
Simplified Sign On Authentication to Virtual Desktop
Windows Username/Password
Smart Cards/Proximity Cards
Client Based (MAC Address)
USB connected biometric devices
Integration with MS AD
No Domain change, schema change, password change
Supports “Tap and Go” Functionality
Integrates with SSO Vendors – Imprivata, Sentillion, Juniper, etc
Simplified Sign-on
Username:Password:
Connection Server
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
Smart Card Authentication
Support PCoIP and RDP
Revoked certificates may be published through OCSP / CRL
Cached and encrypted PIN entry for Local Mode smart card logon
Storage of multiple credentials for public key infrastructure (PKI), one-time password (OTP), and static passwords on a single authentication device
Support for leading smart card manufacturers, remote access solutions, thin clients, and productivity applications
Capability to establish specific policies for certificates, PIN management and notification
Support for smart card standards direct SSO
View 4.5: Delta Training – Revision 1.0
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
Confidential
© 2010 VMware Inc. All rights reserved
Components of Desktop as a Managed Service
Re
du
ce
IT C
os
ts Usability Flexibility
UserExperience
View Client PCoIP Protocol Local Mode
Simplicity Efficiency Security
Management View Manager View Composer ThinApp
Availability Reliability Scalability
Platform vSphere for
Desktops
Confidential
© 2010 VMware Inc. All rights reserved
Scalability
Broker Level
Broker Pod and Teaming
Federated Pool Management
Floating & Dedicated Pools
• Non-Persistent Pool Refresh & Re-Compose
View Composer
Tiered Storage
Local Disk Storage Support
Disposable Disks
“All Users” directory is no longer copied during customization
Thin-Provisioned Disks
Confidential
© 2010 VMware Inc. All rights reserved
Admin Enhancements – You Asked For
View Manager
Admin UI ported to Adobe Flex
Dashboard View
Reporting DB
Delegated Admin
Security Server Setup Improvement
Desktop Administrator
User location and Filters
Individual VM view - Correlation with vCenter
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
Integrated Dashboard UI
View 4.5: Delta Training – Revision 1.0
Confidential
© 2010 VMware Inc. All rights reserved
Role-based Administration
• Delegated
administration
• Flexible Roles
• Helpdesk, etc
• Custom roles
• LDAP-based access
control on folders
Confidential
© 2010 VMware Inc. All rights reserved
System and End-user Troubleshooting: Dashboard
• Surface key information
to administrators
• Drill-down as needed
• Locate root cause
• System health status
• View components
• vCenter components
• Status of desktops
• Status of client-hosted endpoints
• Datastore usage
• VMs on storage LUN
Confidential
© 2010 VMware Inc. All rights reserved
System and End-user Troubleshooting: Diagnostics
Identify issues before
they impact users
• Users unable to authenticate
• Incorrect entitlements
• Machines not available
Confidential
© 2010 VMware Inc. All rights reserved
System and End-user Troubleshooting: Supportability
•Assist end-user
• Send a message
Confidential
© 2010 VMware Inc. All rights reserved
Reporting and Auditing Enablement: Events
Formally defined events
Events have a unique well defined identifier
Standard attributes include module, user, desktop, machine
Provides a unified view across View components
No more needing to review logs on each broker, agent!
Managed with a configurable database
Accessible with:
Vmware View Administrator
Direct access (SQL) for other reporting tools
Powershell
Vdmadmin provides textual reports (csv or xml)
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
Reporting & Event DB – System Auditing and Monitoring
View 4.5: Delta Training – Revision 1.0
Confidential
© 2010 VMware Inc. All rights reserved
View Management Pack for SCOM
View Management Pack provides:
Discovery: Automated mapping of View server deployments
Health monitoring: Visibility into the health of View servers
Service control: Ability to start/restart View services from SCOM console
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
Federated Pool Management
Feature introduction
• Total number of VMs can be architected by View Manager(s) up to10,000 (per vCenter)
• Number of brokers: 5 + 2 (redundancy)
• DMZ Security server: 1 + 1 (redundancy)
• External/internal users: 20/80
• Concurrent online users: 100%
• Maximum sustained rate of logons: 5 per second across all brokers
Concepts Behind the Feature
• Management was the big cost when scaling.
• Federated Pool Management:
Each VM managed by one broker only
• Adding brokers does not increase management load.
View 4.5: Delta Training – Revision 1.0
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
View Connection Servers (View Manager)
Connection Server
Transfer Server
Replica Server
Security Server
Connection Servers
View 4.5: Delta Training – Revision 1.0
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
Transfer Server and Transfer Server Repository
The Transfer Server is a new View server role
• Required for checking out desktop if you plan to use Local Mode
• Installed in a VM with access to the datastores containing the desktop VMs
• Windows 2003 and 2008 32bit / 64bit
• Requires LSI parallel disk controller
• Stateless without UI using JMS
• Managed by View Manager
• Contains an Apache installation as client facing interface to read and write desktop data
• Multiple Transfer Servers can be used for scalability
Transfer Server Repository is a customer supplied UNC file share
• View Composer based pools requires Transfer Server for local mode
• Faster checkout
• Local path to Transfer Server itself
• A network share accessible to one or more Transfer Servers
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
ThinApp Management
Feature
• Associate ThinApp assignment and delivery at desktop pool level
• Once entitled, it supports visibility into
ThinApp status on desktops
Event auditing
Benefits
• Integrates View and ThinApp functionality
• Providing ease of management and delivery capabilities
• Dashboard overview of current ThinApps in a client environment
Confidential
© 2010 VMware Inc. All rights reserved
Integrated Image & Application Management
Simplified Application ManagementAssign ThinApp applications
Individual desktop Desktop pools
Deliver ThinApp applications to desktop
Full – executed locally Streaming – executed from datacenter
Application DashboardInventory of ThinApp applications managed by VMware View
Optimize assignment process per application group
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
View Composer
View 4.5: Delta Training – Revision 1.0
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
View Composer Updated Features
Support for SysPrep
Refresh, Recompose and Rebalance for Non-Persistent Pools
Tiered Storage Support
Persistent Disk Management
Detach/Reattach/Archive
View 4.5: Delta Training – Revision 1.0
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
Sysprep Support
Feature introduction
• Support Sysprep and Quickprep for linked clone guest VMs
Why Sysprep
• Supported by Microsoft as the only customization method
• Generates each VM with unique SID
• Some software (NAC, AV etc) might requires unique SID for licensing control
Restrictions
• Once a pool is configured either Sysprep or Quickprep, cannot be changed
• Sysprep is only supported if the pool is using vSphere mode (homogeneous clusters of 4.0 or higher ESX servers)
• Recompose will generate a new SID for a VM created with Sysprep (Use with cautions)
View 4.5: Delta Training – Revision 1.0
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
Sysprep Support
View 4.5: Delta Training – Revision 1.0
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
Sysprep Support : Installation and Configuration
Installation
• Install Sysprep on the vCenter server
• Sysprep functionality is built into the Vista or Win7 OS
View Manager
• Pool must be configured to use vSphere mode
Linked clone master image
• View agent with View Composer option must be installed
• The master image does not need to be joined to the domain
• For Win7, Volume Licensing must be configured (Microsoft Key Management System server or Multiple Activation Key)
Other
• The domain controller must be reachable from all deployed clones
View 4.5: Delta Training – Revision 1.0
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
View Composer Storage Savings
View Composer / View achieves storage cost reduction through:
• Allow storage over-commit
• Uses delta disks for OS disks and thin provisions user data disks
• Control the growth of storage via rebalance
View 4.5: Delta Training – Revision 1.0
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
Persistent Disk Management
Persistent disks are now the first class objects by View Manager
Why?
• When VMs in dedicated pools were deleted, user data could be lost if the persistent disks were deleted
• Administrators have options to save user data disks (persistent disks) and manage them
Restrictions
• Recreate desktop can only be done with vSphere pools
• Attach Persistent Disk can only be attached to VMs in vSphere pools
• By default disks are archived at the root level of the same datastorethey are in. This can be changed if only a single disk is archived.
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
Persistent Disk Management: Screen shots
Attached Disks
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
Pool Creation: what happens at vCenter
View 4.5: Delta Training – Revision 1.0
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
Part 2
View 4.5: Delta Training – Revision 1.0
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
Partner ecosystem delivers SSL VPN based solutions
Cisco ASA
Juniper SA
F5 Edge Gateway
Additional partners in the future
Available Collateral
Solution briefs
Application Notes (pending)
Secure Access with View
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
Confidential
© 2010 VMware Inc. All rights reserved
Re
du
ce
IT C
os
ts Usability Flexibility
UserExperience
View Client PCoIP Protocol Offline
Simplicity Efficiency Security
Management View Manager View Composer ThinApp
Availability Reliability Scalability
Platform vSphere for
Desktops
Components of Desktop as a Managed Service
Confidential
© 2010 VMware Inc. All rights reserved
First Thing First: The Foundation
•Proven on many large scale deployment
•>10000 desktops or mission critical app
Solid
•> 5000% smaller than Xen.
•MB vs GB
Small
•No general purpose OS. Much smaller size.
•Not compatible with Linux or Windows
Secure
•Purpose built. No dual-purpose like Xen
•Firmware, not Software. Patch, not Update.
Simple
•>100 desktops in 1 box
•Low latency for time-sensitive apps
Scalable
•Embedded into motherboard of servers. 0 disk
•Configured, not installed.
Standard
Confidential
© 2010 VMware Inc. All rights reserved
Optimized Cloud Infrastructure Platform
Scalability: Built for the largest desktop environments
1000s of VMs/pod
Faster and more efficient vMotion leading to decreased migration time for VMs
Shrink and grow desktops based on demand and priority
• Dynamic Resource Allocation
High Performance
Optimized for desktop workloads
Performance acceleration due to lower memory swapping
Best Density
Increased desktop VM density – 16-20 VMs/core
High Availability and Business Continuity
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
VMsafe: new paradigm
Current challenges for security software (e.g. anti virus):
No complete visibility in and below the OS
Running in the same context as the malware they are protecting against
Those in a safe context can’t see other contexts (e.g. network protection has no host visibility).
Need to see from below the OS, not within nor outside
Apps...
OS
HW
Apps
OS
HW
OS
HWLAN
Apps
OS
HW
Hypervisor…
Apps
OS
Confidential
© 2010 VMware Inc. All rights reserved
Introspection Architecture
Security VM
VMsafe Library
Protected VM
VMsafe Hypervisor Extension
Protected VM
VMX
VMM
VMsafe Hypervisor Extension
VMX
VMM
VMX
VMM
ESXi kernel
Security
Agent
Confidential
© 2010 VMware Inc. All rights reserved
VMware VMsafe
Creates a new, stronger layer of defense – fundamentally changes protection available for VMs running on VMware Infrastructure vs. physical machines
Protect the VM by inspection of virtual components (CPU, Memory, Network and Storage)
Complete integration and awareness of VMotion, Storage VMotion, HA, etc.
Provides an unprecedented level of security – “Virtual is more secure than Real”
Security VM
Security API
ESX Server
• HIPS
• Firewall
• IPS/IDS
• Anti-Virus
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
Tiered Storage
What is tiered storage?
Place replicas on a single datastore separate from linked clones
The replicas can be shared by all linked clones
Why SSD for Replicas?
Use high-performance solid state disks (SSDs) to create replicas
Dynamically improve performance of linked clones
Notes
vSphere mode only (All ESX servers are 4.0 or higher)
Only a single datastore can be selected for replicas
The datastore for replicas must be connected to all ESX hosts in the cluster
Use with caution – as the replica datastore creates a single point of failure
View 4.5: Delta Training – Revision 1.0
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
Tiered Storage
View 4.5: Delta Training – Revision 1.0
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
Tiered Storage: Administration
The datastore used for replicas can be changed - it will only affect
• Newly created VM
• Recomposed VM
• Rebalanced VM
If a separate datastore for replicas is de-selected and cannot be found
• The new VMs, recomposed, or rebalanced VMs will use the OS datastores for replicas
View 4.5: Delta Training – Revision 1.0
Linked Clone
DT
OS/Delta 1
Replicas Base Images
Replicas
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
View Composer Feature: Disposable Disk
What is disposable disk?
Windows and Windows applications writes temporary/paging files to disk
These updates are usually deleted after use and space be reused by guest OS
Why?
Before, the volume couldn’t be reclaimed by VMFS
When refreshed on linked clone, it caused persistent data in C:\ drive lost
Benefits:
Provides a zero impact to user and lightweight method to reclaim disk space of OS paging file and temporary files.
View 4.5: Delta Training – Revision 1.0
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
View Composer: Disposable Disk
Disposable Disk
• Redirect paging and system temp files to a temporary disk removed upon VM powered off
Floating View Composer Desktop
Dedicated View Composer Desktop
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
Extensibility with Location Based Printing
Leverage ThinPrintAutoConnectdll communicates over a virtual port with a ThinPrint .print Client
.print client query locally connected printers and network printers
Filter out certain network printers based on the location of the Client Host
Integrated via GPO editor in .ADM directory
View 4.5: Delta Training – Revision 1.0
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
Extensibility with PowerShell
Provides a series of PowerShellcmdlets to administer View from the command-line (PowerCLI)
Allows management of:
• VI server entries
• View Licenses
• Global Config
• Remote and Local Desktop Sessions
• Desktops/Pools
• VMs and Physical Machines (running the Agent)
• Entitlements
Why?
• Allows for automation and scripting
• Provides extensibility to Administration tasks
• Seamless integration from View to vCenter
View 4.5: Delta Training – Revision 1.0
## Linked Clone operations accept individual machine ids.
## The below commands can be used to cover all the VMs in a pool.
Get-DesktopVM -pool_id<id> | Send-LinkedCloneRebalance -schedule (Get-Date)
Get-DesktopVM -pool_id<id> | Send-LinkedCloneRefresh -schedule (Get-Date)
Get-DesktopVM -pool_id<id> | Send-LinkedCloneRecompose -schedule (Get-Date) -parentVMPath<path to new VMfs>
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
Extensibility in Core Broker
View Framework SDK
• A backend consolidation that extends vdmadmin
• PowerShellcmdlets defined on the .NET bridge
• SCOM support
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
Extensibility with Kiosk Mode
Locked down View Access
Client device ID based provisioning and auto-logon
• Automatic generation of ClientIDbased user account in AD
Kiosk-ready View Client
• Suppression of GUI features
• Error reporting for script integration
Automated USB redirection
Client info support for in-guest printer mapping
ThinPrint GPO enabled for location based printing
Use cases: airport check-in, library, amusement park event kiosk, registration desk, ticketing…
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
Extensibility with GPO Templates
Control View components behaviors domain-wide
Configure location-based printing
Creating an OU for View desktops
• vdm_agent.adm (allow protocol access, SSO, run commands etc)
• vdm_client.adm (pass endpoint client information to agent etc)
• vdm_server.adm (performance and log configuration etc)
• vdm_common.adm (common configuration)
• pcoip.adm (limit peak bandwidth)
View 4.5: Delta Training – Revision 1.0
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
Localization
Localized in 4 languages
• French
• German
• Japanese
• Simplified Chinese (new)
View Client UI locale is selectable by host’s Regional & Language option
View Client is Unicode Enabled
• Able to display Unicode Data
VM display name
Snapshot name
Username
View 4.5: Delta Training – Revision 1.0
Confidential
© 2010 VMware Inc. All rights reserved
How To Deploy(A sample approach)
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
Desktop VMsInternalUsers
View Manager
Pilot group of 50–500 users
Internal, non-mobile users
Stage 1a - Enable Internal Users
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
ThinApp
DMZ
Security Proxy
Stage 1b – Expand to External Users
View Manager
ExternalUsers
InternalUsers
Desktop VMs
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
ThinApp
Stream Applications
DMZ
Security Proxy
Stage 1c – Integrate Application Virtualization
View Manager
ExternalUsers
InternalUsers
Desktop VMs
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
ThinApp
Stream Applications
Stage 2a – Deliver Virtualized Applications
InternalUsers
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
ThinApp
Stream Applications
Stage 2b – Virtual Desktops and Applications Internally
View Manager
InternalUsers
Desktop VMs
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)
ThinApp
Stream Applications
DMZ
Security Proxy
Stage 2c – Desktops and Apps to Internal/External Users
View Manager
ExternalUsers
InternalUsers
Desktop VMs
Confidential
© 2010 VMware Inc. All rights reserved
Preliminary design
Prototyping
End-user pilots for pre-production use
Enterprise Class Desktop Design for large-scale production deployments
Best-practices based implementation
Proof of Concept
Education
Adopt Expand Standardize
VMware View/ThinApp
Jumpstarts
Plan & Design for VMware View
Plan and Design for VMware ThinApp
View Upgrade Service
Desktop Service Offerings
Desktop Virtualization Assessments
VMware View Pilot
VMware ICM Education Offerings
Confidential
© 2010 VMware Inc. All rights reserved
View 4.5: What’s New (Technical)