Discovering the Benefits of Client Side Virtualization
Ramesh Vantipalli, CISSP,VCP
Senior Solution Specialist, Asia South
6th November 2008
VMware Desktop Product Line
ExtendingTo MAC
Server HostedDesktops
VDI
VirtualizedDesktop
Workstation
Free Run-Time
Player
DesktopsOn USBs
ACE
1999 2006 2006 20072005
ApplicationVirtualization
ThinApp
1999
Fusion
Millions of registered users; winner of dozens of awards
1999 2000 2001 2002 2003 2004 2005 2006 2007
VMwareWorkstation 1.0
Shipped
VMwareWorkstation 2.0
Shipped
VMwareWorkstation 3.0
Shipped
One million registered
users
VMwareWorkstation 4.0
Shipped
VMwareWorkstation 4.5
Shipped
VMwareWorkstation 5.0
Shipped
VMwareWorkstation 5.5
Shipped
VMwareWorkstation 6.0
Shipped
VMware Workstation Market LeadershipA History of Success
���� 2008 Hall of Fame
VMware Desktop Product Line
Server-Based Desktop
Virtualization
VDI
Secure, Managed Desktop
Virtualization
ACE
Free Virtual Machine
Run-Time
Player
Desktop Virtualization for IT Professionals
Workstation
Desktop Virtualization for
Mac Users
Fusion
Enterprise Managed Desktops
Individually Administered Desktops
Enterprise Desktop Virtualization Choices
Server hosted solution – VDI
Virtual desktops reside safe & secure in a corporate data center
Remote PCs connect from any device running a remote display protocol (e.g. RDP)
Client side solution – ACE 2.5
Users take their desktops in a secure VM with them on portable media devices or laptops
Fully locked down virtual machines with full virtual disk encryption, device mgmt & network access control
Dynamic policy management
Key Solutions — How Customers Use ACE
Home-Users / Remote WorkersCreate an IT managed “virtual laptop”to deploy and manage remote workers and manage with enterprise tools.
3rd Party Unmanaged PCsManage these hostile PCs as if they were on the domain while securing IP and sensitive data.
Training & EducationLess hardware needed, reduce preparation time for new classes and students always start from a “clean” state.
Activity Partitions / Sandbox Environments Isolated, secure environments for accessing corporate resources, while another is a more open, configurable environment.
Secure PortabilityDeliver complete operating environments on secure, portable devices with Pocket ACE.
Kiosks / Shared PCsSet the Virtual Machine to a non-persistent / stateless mode and changes are wiped away at reboot. Install ACE on Linux and deliver a low cost, low maintenance kiosk.
Vista MigrationRun legacy applications and operating systems on a single PC. Contain access from legacy OS with security and isolation policies.
Software Demos & EvaluationsDistribute demo or evaluation software without installation or compatibility problems.
What is ACE (Assured Computing Environment)?
Physical PC
SecuredVirtual Machine
ACE allows organizations to deliver a corporate desktop environment as a secure, IT-managed virtual machine to enterprise users working on any PC.
OS + Apps Policies
+
• Hardware-independent
• Works connected or disconnected from the enterprise network
ACE - Elements
Workstation ACE Edition
Admin interface used to create, manage, and update ACE Packages and Instances
Enables admin to actively manage the deployed Packages (Optional)
ACE Management Server
ACE Package
Configured VMs ready for deployment
Packages that are unpacked and installed on the end-user’s machine
ACE Instance
ACE MasterThe admin side authoring object. It is a container for policies, settings, and virtual machines relevant to one segment of users
ACE Management Server
How Do the Elements Communicate?
Workstation ACE Edition
HTT
PS
Corporate Network
DMZ Internet
ACE Instances
Policies
+Master
=Package
Enhanced ACE for Management & Control
Encryption
Full AES-128 encryption of the virtual disk and configuration files
Copy Protection
Locks an ACE instance to a
specific computer or device
Network Quarantine
Controls access to network resources on both the guest and host.
����Device Control
Determines what types of devices can be attached to the virtual machine
Activation/Deactivation
� Validates users before first launch
� Allows administrators to remotely disable
� Expiration based on date
ACE Features (available in Workstation now)
New Features in ACE 2.5
Kiosk Mode: safely and securely deliver virtual desktops to run in kiosk mode on shared physicals PCsUnity: Seamless integration of guest applications with the host operating systemSmart card authentication : Support for shared smart card authenticationDirectX 3D graphics: Run DirectX 3D applications that support DirectX 9.0c with Shader Model 2 3D graphicsSeamless networking with link state propagation: Configure the guest virtual machine’s networking connectivity to automatically synchronize with the host’sNew Pocket ACE cache setting: Configure the Pocket ACE files to always be kept on the portable USB device and never cached on host PCEnhanced Pocket ACE performance: Enjoy faster synchronization between Pocket ACE and the host during power off Built-in key logger protection: Protect against certain classes of key loggers, which can be used to steal user passwords by recording user keystrokesFull Screen Toggle Mode: Switch full-screen views between guest virtual machines or between guest virtual machine and host operating system via hot keys
SummaryDiscovering the Benefits of Client Side Virtualization
VMware Workstation can meet the needs of Technical Users
VMware Fusion can meet the needs of consumers who want to run Windows, UNIX on MAC
With VMware ACE organizations can get the control and management that they want over enterprise desktops while…
Still giving users a complete desktop environment with all of the freedom end users demand
Top Related