microsoft windows virtual desktop · logon and application launch times. •includes office 365...
TRANSCRIPT
Microsoft Windows Virtual Desktop
Running Servers, Desktops and File Storage
in the Cloud – 6/17
Dennis KlosterSystem Source
• Introductions – Chris Riley
• Dennis Kloster
- Running Servers, Desktops and File Storage in the Cloud
• Q&A – Chris Riley
Agenda
We Hope You are
Enjoying Your
Pizza!!
If you haven’t received your pizza,
then contact Mike Jones:
During the Webinar…
Audio – In presentation mode until end
Control Panel
View webinar in full screen mode
In Chat – Tell us what you hope to learn today?
Feel free to submit written questions
Evaluation just after webinar finish
What is cloudcomputing?
Cloud computing is a model for enabling convenient, on-demand network access to a shared pool of configurable computing resources (e.g., networks, servers, storage, applications, and services) that can be rapidly provisioned and released with minimal management effort or service provider interaction
Cloud Computing Models
Benefits of the Cloud?
• No longer responsible for the hardware your cloud resources run on
• Easily replicate your resources across geographic sites for redundancy
• Incredible flexibility…. Quickly scale up or down to meet changes in demand.
• Move from capital expense model to operating expense model• No large bills for hardware refreshes!!
Potential downsides to the Cloud
• Dependent on connectivity to the Cloud
• Vendor lock-in: It can be difficult and expensive to move your resources out of the cloud
• Limited control:• Typically have little to no control over hardware or backend software
upgrades
• Very little you can do in the event of a cloud related outage
Amazon Elastic Compute Cloud (EC2)
Amazon Elastic Compute Cloud (EC2)
• Resizable compute capacity
• Complete control of your computing resources
• Reduced time required to obtain and boot new server instancesAmazon
EC2
Amazon EC2 Facts
• Scale capacity as your computing requirements change
• Pay only for capacity that you actually use
• Choose Linux or Windows
• Deploy across AWS Regions and Availability Zones for reliability
• Use tags to help manage your Amazon EC2 resources
Launching an Amazon EC2 Instance via the Management Console
1. Determine the AWS Region in which you want to launch the Amazon EC2 instance.
2. Launch an Amazon EC2 instance from a pre-configured Amazon Machine Image (AMI).
3. Choose an instance type based on CPU, memory, storage, and network requirements.
4. Configure network, IP address, security groups, storage volume, tags, and key pair.
Amazon Machine Image (AMI) Details
An AMI includes the following:
• A template for the root volume for the instance (for example, an operating system, an application server, and applications).
• Launch permissions that control which AWS accounts can use the AMI to launch instances.
• A block device mapping that specifies the volumes to attach to the instance when it is launched.
Instances and AMIs
Select an AMI based on:
• Region
• Operating system
• Architecture (32-bit or 64-bit)
• Launch permissions
• Storage for the root device
AMI
Instances
Instance
Launch instances of any type
Host computer
Host computer
Amazon EC2 Instances
OS, Applications,
and Configuration
AMI
Running or Stopped VM
Instances
AZ
VPC
Region
EBS
S3
EBS Snapshots
S3 Buckets
EBS EBS EBS EBS EBS
AZ
Instances Instances
Amazon EC2 Purchasing Options
On-Demand Instances
Pay by the hour.
Reserved Instances
Purchase, at a significant discount,
instances that are always available
1-year to 3-year terms.
Scheduled Instances
Purchase instances that
are always available on the
specified recurring
schedule, for a one-year term.
Spot Instances
Bid on unused instances,
which can run as long as they are available
and your bid is above the Spot
price.
Dedicated Hosts
Pay for a physical host that is fully
dedicated to running your
instances.
Dedicated Instances
Pay, by the hour, for
instances that run on single-
tenant hardware.
Microsoft Windows Virtual Desktop
Azure VMs
Azure VMs
Azure VMs
Azure VM Sizing Options
• Number of CPUs
• Memory allocated to each Virtual Machine
• Temporary Local Storage
• Allocated Bandwidth for the Virtual Machine
• Maximum Data Disks
Microsoft Windows Virtual Desktop
Desktops in the Cloud……
Virtualization Scenarios
Security
and
regulation
Financial Services
Healthcare
Government
Elastic
workforce
Mergers and acquisition
Short term employees
Contractor
and partner access
Specific
employees
BYOD and mobile
Call centers
Branch workers
Specialized
workloads
Design and engineering
Legacy apps
Software dev test
Virtualization Hosts of the Future
Windows Virtual
Desktop Multi-session
Scalable multi-session
modern Windows user
experience with Windows 10
Enterprise security
Windows 10
Multiple sessions
Win32, UWP
Office 365 ProPlus
Windows Server
RD Session Host
Scalable multi-session
legacy
Windows environment
Windows Server
Multiple sessions
Win32
Office 2019 Perpetual
Windows 10
Enterprise
Native single-session modern
Windows experience
Windows 10
Single session
Win32, UWP
Office 365 ProPlus
Provides virtualization infrastructure as
a managed service
Utilizes Azure Active Directory identity
management service
Deploy and manage VMs in Azure
subscription
Manage using existing tools like
Configuration Manager
Connects to on-premise resources
High Level Architecture
C U S T O M E R S U B S C R I P T I O N
Windows 7
Enterprise
RemoteApp
Web access
Management
Diagnostics Gateway
Broker
Windows 10
Enterprise
M A N A G E D B Y M I C R O S O F T / P A R T N E R
Windows
Server 2012
R2 and up
Windows 10
Enterprise multi-
session
Load balancing
M A N A G E D B Y M I C R O S O F T / P A R T N E R
Compute Storage Networking
Identity Strategies
Options for Required Active Directory
Pros Cons
Spin up a DC in Azure Can sync with on-premises DC with VPN or ExpressRoute All familiar AD Group PoliciesVMs can be stopped to reduce costs
Adds additional management of a VM and Active Directory in Azure
For cloud-based organizations, use Azure AD Domain Services
Don’t have to connect to on-premises resources
AD DS runs continuously with a small fixed charge
For hybrid organizations, use VPN or ExpressRoute and make sure your on-premises DCs can be found in Azure
No AD DS or Domain Controller required in Azure
Latency could be higher delaying user authenticationAssumes on-premises environment
WVD Environment Types
Environment
Types
Workstation OS Running Profile
setting
synced
User can
install
software
Use Case
Physical Laptop or
Desktop
Locally Yes or No Y
“Personal”
Virtual
Desktop
Specific VM
for each user
Single
session
Yes or No Y Developers
Heavy Users
Non-
persistent
Virtual
Desktop
User assigned
to resource
pool
Multi session Yes N
Published
Apps
None – apps
only
Multi session Unique profile
Improved Security with Management
Security through
Azure AD (i.e. MFA,
CA)
Reverse connect
eliminates open
inbound ports to
VMs
Multiple admins
assigned role-based
access
Isolated user
sessions in single and
multi-session
Reduced Attack
Surface
Granular Access Control
Isolated User
Sessions
Azure AD Security
Client Features and Administration
Features Windows Web Android macOS iOS
MFA X X X X X
3rd party plug-ins X
Dynamic Resolution X X X
Multimonitor X X
Teams Coming soon
Bulk Deployment X X
Management Intune, ConfigMgr, GPO
WVD Bandwidth Recommendations• Bandwidth rises with:
• Resolution and frame rate
• Voice or video conferencing
• Real-time communication
• Streaming 4K video
Workload Applications Bandwidth Recommendation
Display resolution @ 30 fps
Task worker Word, Outlook, Excel and Adobe
1.5 Mbps 1024x768
Office worker + PowerPoint and Photo Viewer
3 1280x720
Knowledge worker + Java 5 1920x1080
Power worker + CAD and publishing 15 3840x2160 (4K)
Video always uses hardware acceleration
Smooth playback when moving video window
4K downsampling
Video and Graphics Improvements
0
500
1000
1500
Session (60 seconds)
Average Encoding Time (ms)
4kDownSampled 4kNative
0
5
10
15
Session (60 seconds)
Output Frames / Second (fps)
4kDownSampled 4kNative
Device Redirection
High-level redirection of camera
Less network bandwidth vs. USB
camera redirection
Increased video framerate, up to 30 fps
Redirect multiple cameras
Improved printing messages
Built-in Windows client first to adopt
FSLogix
Technologies
With the acquisition of FSLogix, eligible customers will get access to
three core pieces of technology
Profile ContainerReplacement for roaming profiles and folder redirection. Dramatically speeds up
logon and application launch times.
• Includes Office 365 Container, which roams Office cache data (Outlook OST, OneDrive
cache, Skype for Business GAL, etc.) and Windows Search DB with user in virtual desktop
environments.
App MaskingMinimize number of gold images by creating a single image with all applications.
Excellent app compatibility with no packaging, sequencing, backend
infrastructure, or virtualization.
Java RedirectionHelps protect the enterprise from vulnerabilities of multiple installed versions of
Java by mapping specific versions to individual apps or websites.
• Pay only for the virtual machines (VMs), storage, and networking when using the
service.
• Pick VM and storage options to match your use cases.
• Purchase one-year or three-year Azure Reserved Virtual Machine Instances, for
up to 72% savings versus pay-as-you-go pricing.
Azure Consumption
Are You Licensed for WVD?
Pay only for the virtual machines (VMs), storage, and networking consumed when workstations are using the service
Options such as one-year or three-year Azure Reserved Virtual Machine Instances with monthly payment options, can
save up to 72% versus pay-as-you-go pricing
ServerAccess Server workloads with
WVD with RDS CAL license with
active Software Assurance (SA)
ClientAccess Windows 10 single and multi
session and Windows 7 with WVD with:
• Microsoft 365 E3/E5
• Microsoft 365 A3/A5/Student Use
Benefits
• Microsoft 365 F1
• Microsoft 365 Business
• Windows 10 Enterprise E3/E5
• Windows 10 Education A3/A5
• Windows 10 VDA per user
Microsoft Windows Virtual Desktop
AWS Workspaces
AWS Workspaces
• Your personal desktop in the cloud; lessens need for profile management
• Can tie into your existing Active Directory
• Lots of different hardware options, including vGPUs for high end graphic needs
• Windows licensing can be built into the cost or you can BYOL (you must commit to running at least 200 Amazon WorkSpaces in a given AWS region each month)
Microsoft Windows Virtual Desktop
Cloud Based File Services
AWS FSx• Storage capacity $0.13 per GB per month
• Throughput capacity $2.20 per MBps per month
• Backup storage $0.05 per GB per month (Simple backups built into the offering)
• Nothing runs on premise (no appliance or Windows server to manage
• No local file caching
• Built in data deduplication (depending on the file type AWS claims 30%-80% storage reduction is average)
• Uses SSD drives= sub-millisecond performance. Great if you have applications that require fast access to file shares. (applications would need to run in AWS in order to benefit from this)
• Integrates with Active Directory
AWS Storage Gateway
• Data written to AWS storage by your gateway $0.01 per GB (file)
• Volume storage $0.023 per GB-month of data stored (volume)
• Requires an appliance on site (something else to manage and it consumes local resources)
• Local file caching (may give better performance for on-prem)
• Limited to 10 shares per storage gateway (file)
• Integrates with Active Directory
Azure Files
• Choose between standard files (HDD based hardware) and premium files (SDD based hardware)
• Pricing starts at $.06 per GB for standard files and $.24 for premium files. (cost can go up on depending on level of redundancy you need)
• Accessible via SMB
• Integrates with Active Directory
• Azure File Sync can be used to replicate Azure Files to an on-site file server
Kindly complete the survey at the end of this webinar. We will use your feedback to help us
improve.
THANK YOU!