adv1593be horizon apps and jmp: technical deep dive or ...€¦ · •this presentation may contain...

Barak Nissim – Systems Engineer - EUC Practice, VMware

Hilko Lantinga– Technical Marketing Architect – EUC, VMware

ADV1593BE

#VMworld #ADV1593BE

Horizon Apps and JMP: Technical Deep Dive

VMworld 2017 Content: Not fo

r publication or distri

bution

• This presentation may contain product features that are currently under development.

• This overview of new technology represents no commitment from VMware to deliver these features in any generally available product.

• Features are subject to change, and must not be included in contracts, purchase orders, or sales agreements of any kind.

• Technical feasibility and market demand will affect final delivery.

• Pricing and packaging for any new technologies or features discussed or presented have not been determined.

Disclaimer

2#ADV1593BE CONFIDENTIAL



bution

VMware Horizon Apps and JMP

1 Overview

2 App Volumes

3 Instant Clones

4 Workspace One

5 User Environment Manager

6 Deployment Practices

#ADV1593BE CONFIDENTIAL 3

UserEnvironment Management

Instant Clones

App Volumes



bution

Desktops and Apps From a Single PlatformCentrally and securely deliver, manage and monitor desktops and apps on premises to end users across devices and locations.

Manage & Deliver

Applications

Support for

Windows and

LinuxVMware Horizon

VMware vSphere

Desktops

Applications

Manage & Deliver

Desktops

Adaptive &

Contextual User

Experience




bution

JMP Technologies Eliminate Cost and Complexity

Real-Time App Delivery

Ultra-fast Desktop Provisioning

Contextual Policy Management


Instant Clones

App Volumes




bution

VMware Unified

Access Gateway

RDSH

Horizon

Agent

Windows

RDSH

Horizon

Agent

Windows

RDSH

Horizon

Agent

Windows

Application Pools

VMware Instant Clone

Technology

MasterImage

Horizon Clients

Internet

LogicalArchitecture

Desktop

Horizon

Agent

Windows

Desktop

Horizon

Agent

Windows

Desktop

Horizon

Agent

Linux

RDSH Farms Desktop Pools

Connection Server

View Composer

Linked Clones

MasterImage

vSphere

Ap

p V

olu

me

s M

an

ag

er

Ap

pS

tacks

User Environment

Manager Policy




bution

Horizon Apps and JMP – Demo Workflow

7

App Volumes

• Assign AppStack to Active Directory OU

Horizon • Provision Instant Clone RDSH Farm

Horizon • Create Application Pools

WS1 • Entitlements Sync From Horizon

WS1 • User Login

UEM • Configure and Apply Pre-Defined App Settings

UEM • Configure and Apply Horizon Smart Policies

#ADV1593BE CONFIDENTIAL



bution


1 Overview

2 App Volumes

3 Instant Clones





Instant Clones

App Volumes



bution

Managing Horizon RDS Hosted Apps With App Volumes

APP

OS

Faster delivery

and updates at

scale

Fewer images

to manage

Isolate apps as

needed with

App Isolation

Centralized

analytics and

management




bution

VDI

RDSH

Complete Application Lifecycle Management

Logically manage applications

based on line of business

requirements.

Quickly deliver, update, and retire any set of applications

Update immediately, or next login.

Simplify management of all of your

core applications through one AppStack




bution

App Volumes with Horizon Apps (RDSH)

11

Storage (VSAN / VMFS / NFS / Local SSD)

Design Decisions

• Assign AppStacks to RDS host computer objects, not user objects.

– For Instant Clone RDSH, assign AppStacks to the OU where the RDS host computer objects reside.

• Do not assign directly to computer objects or AD groups containing computer objects.

• Supports Windows Server 2008 R2 and 2012 R2.

• No writable volumes with RDSH.

Horizon Instant Clone Farm

vSphere




bution

Horizon Apps and JMP - Workflow

12

App Volumes





WS1 • User Login






bution

https://vimeo.com/227754507




bution


1 Overview

2 App Volumes

3 Instant Clones





Instant Clones

App Volumes



bution

Provisioning RDSH Instant Clone Farms

Overview

• Leverages vmFork in vSphere 6.0 U1 and later.

• Cloning and customization done without reboots of the guest OS.

• Provision RDSH Farms and Desktop pools.

Benefits

• Rapidly provision RDSH servers.

• Expand or shrink existing RDSH farm in seconds.

• Streamlined, rolling maintenance operations.

Master VM

Template

Replica

Parent (Host 1)

RDSH VMs

Parent (Host 2)

RDSH VMs

Parent (Host 3)

RDSH VMs




bution

Provisioning RDSH Instant Clone Farms

Instant Clone RDSH with JMP

• AppStacks deliver published apps and RDSH-based desktops.

• User Environment Manager provides dynamic policy configuration and user personalization.

Advantages Over View Composer

• Faster provisioning.

• Integrated with vSphere.

– No database required.

• Less resource-demand on vCenter Server.

• Improved maintenance operations.




bution

Parent

Active Memory

Parent VM

Linked Disk

Delta Disk

Replica

Thin Provisioned

Full Clone

InternalTemplate

Linked Disk

Delta Disk

Provisioning Instant Clones

Disk Copy-on-Write

Memory

Priming: Image Push Cloning

Master

Snapshot

Instant Clone

Delta DiskCopy-on-Write

Active Memory

Instant Clone

Linked Disk

Copy

Copy

TPS Shared

MemoryCOW




bution

Add or Remove RDS Hosts from the Farm Instantly

• Priming process is done at farm creation.

• Or when farm is updated.

– Active Parent VMs are created on each vSphere host.

• Individual RDS Hosts are Instant Clones

– Rapidly created, customized and available.

• Can scale up or down existing farms rapidly by editing the farm settings.

• Set the minimum number of ready VMs to achieve rolling server updates when performing maintenance.




bution


19

App Volumes





WS1 • User Login






bution





bution


21

App Volumes





WS1 • User Login






bution





bution

Workspace ONE - Portal




bution


24

App Volumes





WS1 • User Login






bution





bution


26

App Volumes





WS1 • User Login






bution





bution


1 Overview

2 App Volumes

3 Instant Clones





Instant Clones

App Volumes



bution

VMware User Environment Manager

IT

User Environment

Manager

IT Settings

User Personalization

and Profiles

Dynamic Policy

29

Cloud

Virtual

Physical




bution

Consistent and Personalized Access Across Devices

Personalized PublishedApp Settings

Persist to Virtual Desktop at login

30

Dynamic adaptation according to device

or location

Policy follows user around for superior

user experience

Quickly add/remove profile and

personalization services




bution

Dynamic Policy Configuration Based on Conditions

Virtual

Desktop

Physical

Desktop

Cloud

Desktop

Printer

Settings

Network

Mappings

Conditions

31

ADMX Based

Settings

Horizon 7

Smart Policies

Application

Settings

Application

Blocking




bution

Horizon Smart Policies

32

Overview

Horizon platforms & User Environment Manager integration to enable, disable or restrict:

• USB Redirection

• Printing

• Clipboard

• Client Drive Redirection

• HTML Access File Transfer

• Bandwidth Profile for PCoIP & Blast Extreme

Benefits

Single location for granular user experience management on Horizon platforms

Horizon, Horizon Cloud (On Prem/Hosted) and Horizon Apps




bution


33

App Volumes





WS1 • User Login






bution





bution


35

App Volumes





WS1 • User Login






bution





bution


1 Overview

2 App Volumes

3 Instant Clones





Instant Clones

App Volumes



bution

Sessions per RDSH30-50

4/8

vRAM per RDSH 32-64GB (~1GB/user)

RSDH per ESX host1 per 4 logical cores

vCPU per RDSH

Recommended Sizing - RDSH




bution

Master Image Recommendations

• There are two recommended virtual CPU configurations when deploying RDSH, depending on workload:

– 4 sockets with 1 core per socket with a 1:1 virtual-to-physical CPU ratio

– 8 sockets with 1 core per socket with a 2:1 virtual-to-physical CPU ratio

• The amount of memory assigned should be reserved and assessed by actual application usage.

• Install all available updates to Microsoft Windows.

• Run the VMware OS Optimization Tool with the default options.

• Reclaim space:

– Use the Windows built-in Disk Cleanup utility to delete unnecessary files.

– Empty space should be zeroed so the space can be reclaimed. Sysinternals SDelete on Windows. Example: sdelete64.exe –z c:

– On a VMFS 5 volume run vmkfstools -K /path/to/disk-name.vmdk. On non-VMFS volumes, you can clone to a thin disk.




bution

RDS Design Considerations

• Use Group Policies to secure and harden the RDS hosts.

– For example: Restrict access to system (C:) drive, set default application folders (Network home drive), redirect My Documents, map network printers.

• ‘Empty Session’ timeout is 1 minute (default).

• Both Application Pools and Desktop Pools can use the same RDS Farm.

– If an RDS hosted desktop and remote application is launched, two sessions can be established to the same host.

• Delete profiles at log off.

– User Environment Manager Advanced ADMX template. https://kb.vmware.com/kb/2145286

• Use Mandatory profiles. http://bit.ly/2j4JDk1




bution

https://kb.vmware.com/kb/2145286

http://bit.ly/2j4JDk1

Horizon Apps Recommendations

• Use Instant Clones to provision RDS hosts every two seconds.

• Consider optimizing the RDSH load balancing algorithm using performance metrics.

– For more information, see Configuring Load Balancing for RDS Hosts in View Administration.

• Utilize Horizon Smart Policies to optimize Admin control and User experience.

• Design a strategy for printing.

– For more information, see Choosing Printing Options for VMware Horizon 7.

• Optimize anti-virus by disabling real-time scanning of low-risk folders like C:\SVROOT (App Volumes).

• Schedule maintenance operations.




bution

https://www.vmware.com/support/pubs/view_pubs.html

https://blogs.vmware.com/euc/2017/04/printing-options-vmware-horizon-7.html

Recurring Maintenance

• Scheduled Maintenance.

– Daily, weekly, monthly.

• Regularly delete and recreate the RDSH Instant Clones.

– Can update to a new Master snapshot.

– Subsequent times will use the same Master snapshot.

• A minimum amount of RDS Hosts are kept available during maintenance.

Use case

• Regularly regenerate the RDSH Instant Clones.

• Automatically keep RDSH farm at optimal condition.

Automated Maintenance




bution

Immediate Maintenance

Overview

• A one off update or refresh of the RDSH farm.

• Use the same or a new Master snapshot.

• Can be Immediate or at a specific time.

• What Happens:

– Old RDS Hosts are deleted.

– New Parent VMs are created if updating to a new snapshot.

– New RDS Host Instant Clones are created.

– A minimum number of RDS Hosts are kept available during maintenance.

Benefits

• Push urgent security patches or updates.

• One off regeneration of the RDSH Instant Clones.




bution

Image Choice

• For both Immediate and Recurring maintenance.

• Choose Master VM snapshot to use.

• Use current:

– No push of Master to create new parents.

– Old RDS Host VMs deleted.

– New RDS Host VMs created.

• Use another snapshot:

– Old RDS Host VMs deleted.

– New parents are created on vSphere hosts.

– New RDS Hosts created.




bution

Additional Resources

45

• App Volumes Deployment Considerations

– https://www.vmware.com/content/dam/digitalmarketing/vmware/en/pdf/techpaper/vmware-app-volumes-deployment-considerations.pdf

• Publishing Applications with VMware Horizon 7

– https://www.vmware.com/content/dam/digitalmarketing/vmware/en/pdf/techpaper/vmware-horizon-7-application-publishing.pdf

• VMware Horizon 7 Enterprise Edition Reference Architecture

– https://www.vmware.com/content/dam/digitalmarketing/vmware/en/pdf/techpaper/vmware-horizon-7-enterprise-validated-integration-design-reference-architecture.pdf

• VMware Horizon 7 Enterprise Edition Multi-Site Reference Architecture

– https://www.vmware.com/content/dam/digitalmarketing/vmware/en/pdf/techpaper/vmware-horizon-7-enterprise-edition-reference-architecture-multi-site.pdf

• Best Practices for Published Applications and Desktops in VMware Horizon Apps and VMware Horizon 7.

– https://www.vmware.com/content/dam/digitalmarketing/vmware/en/pdf/techpaper/vmware-horizon-7-apps-published-applications-desktops-best-practices.pdf

• VMware Horizon App Performance Reference Architecture

– https://www.vmware.com/content/dam/digitalmarketing/vmware/en/pdf/techpaper/vmware-horizon-apps-reference-architecture-performance.pdf




bution

https://www.vmware.com/content/dam/digitalmarketing/vmware/en/pdf/techpaper/vmware-app-volumes-deployment-considerations.pdf

https://www.vmware.com/content/dam/digitalmarketing/vmware/en/pdf/techpaper/vmware-horizon-7-application-publishing.pdf

https://www.vmware.com/content/dam/digitalmarketing/vmware/en/pdf/techpaper/vmware-horizon-7-enterprise-validated-integration-design-reference-architecture.pdf

https://www.vmware.com/content/dam/digitalmarketing/vmware/en/pdf/techpaper/vmware-horizon-7-enterprise-edition-reference-architecture-multi-site.pdf

https://www.vmware.com/content/dam/digitalmarketing/vmware/en/pdf/techpaper/vmware-horizon-7-apps-published-applications-desktops-best-practices.pdf

https://www.vmware.com/content/dam/digitalmarketing/vmware/en/pdf/techpaper/vmware-horizon-apps-reference-architecture-performance.pdf



bution