mobility ejal bracha - edgemo - it instinct · home€¦ · · 2016-06-10mobility ejal ejal...
TRANSCRIPT
1 © 2016 Citrix | Confidential
MOBILITY Ejal Ejal Ejal Ejal Bracha Systems Engineer , Bracha Systems Engineer , Bracha Systems Engineer , Bracha Systems Engineer , CitrixCitrixCitrixCitrix
2 © 2016 Citrix | Confidential
Agenda
1. Overview & Differentiation
2. 10 Key Highlights of XenMobile 10
3. Better together with XA/XD
4. Future
5. What about the new Microsoft partnership
© 2015 Citrix
“”EUC is more
diverse
Users work anywhere & on
any device
Business disruption
Protect
Empower
Transform
Ensuring
Security, Experience and Flexibility
4 © 2016 Citrix | Confidential
3x 3x 3x 3x More Innovation in More Innovation in More Innovation in More Innovation in 2015201520152015
Acquire Ringcube
Acquire AppDNA
Chrome Receiver
Announce cloud support
Mobile SDKUnified app/desktopcloud-enabled platform (FMA)
1st GPU support
PVS write cache
Hybrid cloud
provisioning
Skype for Mac/Win/Linux
Acquire Framehawk
Prelaunch, linger, anon logon
HDX Thinwire Plus
HDX Framehawk GA
Faster SmartCard logon
FIPS & Common Critieria
Clipboard policies
X1 Mouse
Session recording
Watermarking (Labs)
Jailbreak detection
Linux GA and 2.0
Windows 10 support Day 1
Supportability tools
Automated migration service
DesktopPlayer (Mac/Win)
Multi-geo management
Horizon migration service
Advanced alerting
Workspace Cloud GA
Browser Apps Service (Labs)
AppDNA Express (Labs)
4 © 2016 Citrix | Confidential
2011 2012 2013 2014 2015
5 © 2016 Citrix | Confidential
Enterprise Mobility Management – full secure stack
App Management
Device Management
Data sync and share
Productivity AppsSecure
Netw
ork
G
ate
way
ShareFile Storage Zones
Cloud
On-premise
Protect information
6 © 2016 Citrix | Confidential
• MDM enrollment is not required
• App specific controls
• E.g. wipe/ lock an app
• Single Sign on across all apps in container
• Encrypted data at-rest/ data in-use/ data in-motion
• Rich experience with inter-app workflows
No device enrollment for BYOA differentiated device independent solution
data-at-rest
data-at-rest
data-in-motion
data-in-use
En
dE
nd
En
dE
nd
-- -- toto toto-- -- E
nd
Se
curity
En
d S
ecu
rityE
nd
Se
curity
En
d S
ecu
rity
Micro VPN Micro VPN Micro VPN Micro VPN
Secure Container with Secure Workflows
MDM Optional
StorageZones
Secure Data Vault
7 © 2016 Citrix | Confidential
Power-user apps – optimized for businessWorxApps
ShareConnect
Citrix for Salesforce
Desktop-like productivity New Apps coming in 2016 ! Citrix-owned / MDX-enabled
Secure Forms
Release dates are subject to change
8 © 2016 Citrix | Confidential
Power-user apps – optimized for businessWorx Apps
Capture,
store and share notes
Secure mail,
calendar & contacts app
Secure
mobile web browser
Secure doc
sharing, sync & editing
Automate
business processes
without
mobile app development
Secure FormsSecure FormsSecure FormsSecure Forms
“Worx ready”
Lync client for messaging
/chat
WorxChatWorxChatWorxChatWorxChat
9 © 2016 Citrix | Confidential
XenMobile and O365 – Better TogetherUnique value add with XenMobile
Encrypt information on device
Secure communications
Open attachments in Office 365
Only use sanctioned storage. Solve the drop-box problem!
Common app store
✔ Unique value add with XenMobileUnique value add with XenMobileUnique value add with XenMobileUnique value add with XenMobile
✔✔✔
11 © 2016 Citrix | Confidential
Key Highlights
• Unified Endpoint
Management – iOS,
Android, Windows 10,
MacOS, AfW, KNOX
• Mail Redirection API
• Reverse Split Tunnel
• User Certificates without
MDM enrollment
• Extend TouchID to
WorxHome
• Mail and Calendar
Enhancements
• Shared Devices for Apps
• XM and Citrix Cloud
• XM Blueprints
• Secure Forms
ExperienceSecurity Flexibility
12 © 2016 Citrix | Confidential
• Windows 10 and Mac OS X device management
• Window 10 - Desktop, Laptops, Phones
• Azure AD enrollment, Health Attestation, App Distribution
• Mac OS X – Yosemite and El Capitan
• 12+ restriction profile wizards, import from profile utility
• Enhancements to iOS, Android, AfW, Knox
• iOS: VPP app distribution w/o user accounts, DEP enhancements, 12 new restrictions
• Android/ AfW: GCM support, Device owner mode
• Knox: Per App VPN (SSL, IPSec), Container VPN, New restrictions
Unified Endpoint Management (MDM)Apply device management polices to laptops an desktops similar to phones and tablets
13 © 2016 Citrix | Confidential
Reverse Split Tunnel for Traffic ManagementMicro VPN is enhanced to include support for reverse split tunnel
Internet
Intranet Web
Server
Intranet Intranet Web
Server
Intranet File
Server
NetScaler GatewayNetScaler GatewayNetScaler GatewayNetScaler Gateway
Split tunnel = on
off
reverse reverse reverse reverse ✓
“Intranet”
app traffic
Reverse Split
Tunnel IP
range / FQDN
“External”
app traffic
• Three Split Tunnel modes now supported:
• Off
• All traffic from device is directed to NetScalerGateway (NSG)
• On
• Traffic for a given list of addresses is directed to NSG. Everything else goes to Internet
• Reverse [New]✔• Traffic for a given list of addresses is directed
to Internet. Everything else goes to NSG.
14 © 2016 Citrix | Confidential
• In previous releases, User Certificate distribution was only possible via MDM
• MAM-only customers had to rely on Active Directory credentials for online authentication
• Now, MAM-only customer can leverage user certificates for online authentication!
• User certificate will be pushed during MAM registration
User Certificates without MDM Enrollment
15 © 2016 Citrix | Confidential
MAM (MDX) Policies Unique to Citrix
Test for Device PIN
Encryption Kill Pill
Step-Up Auth Upgrade Grace Period
Encryption Open In Exceptions
Custom URL Schemes
Allowed URLs
Block Photo Library Block MicBlock Bluetooth
Block Dictation
Block SMS Compose Block AirDrop Block File Attachments
Block Facebook and Twitter APIsObscure Screen Contents
Block 3rd Party Keyboards
Block App Logs Block All Network
App-Level Geofence
Mail Redirection
App Settings UI
16 © 2016 Citrix | Confidential
Extend TouchID to WorxHomeFurther improve authentication experience
NEW NEW NEW NEW
17 © 2016 Citrix | Confidential
• Mail Enhancements
• Comprehensive support for O365 Autodiscovery
• Attach last photo taken
• VIP Contacts
• Spell check on iOS
• GoTomeet.me integration for Join Me/ Dial-in
• Calendar enhancements
• Show Organizer in forwarded meetings
• Accept/ Decline meetings from lock screen
• Remove cancelled meetings from Calendar
• Include comments while cancelling meetings
Mail and Calendar EnhancementsOptimized for business experience
18 © 2016 Citrix | Confidential
• Login/ Logoff
• No user re-enrollment
• Encrypted and Secure
• Maintains user context
• Data Isolation
Shared Devices and AppsExtend Shared Devices from Device Sharing to Sharing WorxMail and WorxWeb
Device sharing
Citrix Worx Apps sharing
19 © 2016 Citrix | Confidential
• XenMobile available via Citrix Cloud
• Same code base as XenMobile on-premise
• IPSec tunnel for enterprise connectivity
• XenMobile Production and POC Blueprints available
• To accelerate provisioning of XenMobile deployment
• Update and Health check service on the roadmap
XenMobile and Citrix Cloud and LCM (Blueprints)
20 © 2016 Citrix | Confidential
Secure FormsRe-Think Apps for your Task Workers
Speeding ticketsCounty Police Sheriff’s Office
Patient request and dischargeHealth Care
Aircraft service inspectionAirlines - transportation
Corrosion control reportOil and Gas
Claims adjuster reportInsurance
New account signupsBanking
… create these mobile apps without writing
one line of code?
Can I …
21 © 2016 Citrix | Confidential
Secure FormsJust configure your next app – no coding required!
Compose and publish
AAAAAAAA
BBBBBBBB
Securely save to
ShareFile, Web
Service or send to
CCCCCCCC
23 © 2016 Citrix | Confidential
What’s in the Works
The development, release and timing of any features or functionality described for our products remains at our sole discretion and are subject to change without notice or consultation. The information provided is for informational purposes only and is nota commitment, promise or legal obligation to deliver any material, code or functionality and should not be relied upon in making purchasing decisions or incorporated into any contract.
Better together with XA/XD
24 © 2016 Citrix | Confidential
Smart Access integration with XenMobileFor IOS and Android native Receivers
1a
checks device registration and status (e.g., jailbroken, location)2
Users
1b
XenApp / XenDesktop
XenMobile Server
3 Report device status
4
25 © 2016 Citrix | Confidential
WorxWeb and Virtual BrowserLaunch Virtual Browser for secure remote access or Web app dependency on a specific browser type/version
WorxWeb launched; Parses URL and per policies renders page in WorxWeb or
launches Receiver
For std. HTML5
rendering, no need for secure remote access
Render page/ web app in WorxWeb
For secure remote
access or web app dependency
Render page/ web app in Virtual Browser
27 © 2016 Citrix | Confidential
OUR
CURRENT
FOCUS
Available today
For more information visit:
support.citrix.com/supportability
XenXenXenXenMobile SupportabilityImproving product quality
and customer experience
XM Analyzer Tool for
Enrollment (Beta)
Worx Exchange
ActiveSync Test Tool
Certificate Management XenMobile + NetScaler Self-Service Tools
SMS/Email certificate expiry notification
Simplified certificate setup and
configuration
Prescriptive Deployment Guide to assist
with environmental design (Coming soon)
Cerebro tool for troubleshooting XM +
NSG connection
Cloud-based portal for AutoDiscovery
Service
APNS Self-Signing Portal
29 © 2016 Citrix | Confidential
Aligning Microsoft
EMS & Intune and
XenMobile & NetScaler
Integrating Identity and
Networking between
NetScaler and Azure
Enabling XenDesktop VDI
to deliver a Windows 10
desktop-as-a-service
from the Cloud on Azure
30 © 2016 Citrix | Confidential
Future roadmapLots of innovationLots of innovationLots of innovationLots of innovation
• Xenmobile in Azure
• Citrix is also integrating NetScaler into EMS.
• XenMobile for EMS solution leveraging Azure Active Directory that will allow seamless access with application integration (Receiver, ShareFile, WorxMail) with EMS.
• Support for EMS via single sign-on using Azure Active Directory integration
• Device passcode enforcement to encrypt Office 365 data (at rest) on the device