unclassified dcs-4 departmental computing services “security, performance, and support benefits of...
TRANSCRIPT
UNCLASSIFIED
DCS-4
Departmental Computing Services
“Security, Performance, and Support Benefits of Virtualizing the Desktop PC
Using a Zero-Client”
Kenneth Martinez, Team Leader
Greg Belyeu Michael Johnson Dave Jones 505/665-6375 505/667-8696 505/665-3889e-mail: [email protected] e-mail: [email protected] e-mail: [email protected]
LA-UR 09-03356
UNCLASSIFIED
DCS-4
Departmental Computing Services
Knowledge and Technology Increases Productivity
- 1st Century Farmer – 1 bushel/acre
- 16th Century Farmer – 10 bushels/acre
- Modern Day Farmer – 100+ bushels/acre
With Improved Knowledge and Technology
UNCLASSIFIED
DCS-4
Departmental Computing Services
Today New Approaches to IT Infrastructures Are Promising Greater Efficiency
UNCLASSIFIED
DCS-4
Departmental Computing Services
Desktop PCs: A Major Management Problem
Desktop PCs today are complex stacks of multiple hardware components, operating systems, drivers and applications. Maintaining and managing this hardware and software consumes more than 70% of the TCO of a typical PC, and represents the bulk of the workload of PC support staff – an estimated $4000 - $6000 per desktop per year.*
*According to Gartner Inc. and IDC estimates
UNCLASSIFIED
DCS-4
Departmental Computing Services
A Virtualized Desktop Infrastructure (VDI)
A virtualization infrastructure moves the PC and all its software off the desktop and into the data center.
UNCLASSIFIED
DCS-4
Departmental Computing Services
New Innovations by Leading Technology Companies
Zero-Client
• Wyse Technology• Pano Logic • Teradici
Thin-Client
• Digi• ClearCube• HP• Citrix
UNCLASSIFIED
DCS-4
Departmental Computing Services
Zero-Client verse Thin-Client• No operating system• No CPU or non-volatile
Memory located at the end point
• Local processing capabilities
• Operating Systems
A true zero-client device only connects a monitor and peripherals (mouse, keyboard, USB devices) back to a VDI or similar infrastructure in the data center.
VNC- or RDP-equipped PCs (or blades) are deployed in the back room – work along the lines of a Hosted PC solution
UNCLASSIFIED
DCS-4
Departmental Computing Services
The Pano Device
Features:
Zero Client - No CPU No Memory No DriversNo Operating System No Software No Moving Parts
Power Friendly: Consumes only 5 watts - 3% of a typical PC - making it the ultimate green alternative
UNCLASSIFIED
DCS-4
Departmental Computing Services
Why Pano? Simplicity!
UNCLASSIFIED
DCS-4
Departmental Computing Services
FEATURES
• Solid State Construction• Minimized Footprint• 1920 x 1200 Resolution & Dual Monitor Capable• USB Device Capable and Controllable• Ease of Setup and Configuration
UNCLASSIFIED
DCS-4
Departmental Computing Services
BENEFITS
• Lower Replacement Costs
• System Configuration Control
• VM Assignments to – Users (Single)– Pano Devices (Multiple)
• Centrally Managed– Minimizes Support Staff– Apply and Enforce Security
Policies
• Auto Assignment
UNCLASSIFIED
DCS-4
Departmental Computing Services
A Great Desktop Replacement
UNCLASSIFIED
DCS-4
Departmental Computing Services
Reduced Waste
30 to One
UNCLASSIFIED
DCS-4
Departmental Computing Services
Adaptable to Specific Applications
UNCLASSIFIED
DCS-4
Departmental Computing Services
SECURITY ENHANCEMENTS
• No User Data on Local Machines• Simpler Cleanup of Contamination Incidents• Immediate System Lock-Out• USB Security• Network Security - Traffic is protected using 128-
bit AES encryption.
UNCLASSIFIED
Minimum (Mandatory) ReQ:• 9-Point Disablement• NNSA Diskless
Compliance• Support 1024x768 (XGA)
Recommended ReQs• IP-Based Operation• Multiple Users to Multiple
Servers• No HD Capability• Controlled Supply Chain• Strongly Authenticated
and Encrypted access (A&E)
• 320x200 (QVGA) Full Screen, Full-Motion Video
DCS-4
Departmental Computing Services
Security Matrix Requirements
UNCLASSIFIED
DCS-4
Departmental Computing Services
Thin-client Scale Matrix
UNCLASSIFIED
DCS-4
Departmental Computing Services
DesktopClient
9-Point NNSA XGA QVGA Video
No HD Headers
320x200 (QVGA)
Auth & Encrypt
Grade
SunRay2FS
X x X X X B+
Clear-Cube C7420
x x X x x x X B+
Wyse S10
? x X x ? ? ? B+
Symbio SYM550
X x X x ? D-
Pano X x x ? x ? ? B+
Thin client scale matrix
UNCLASSIFIED
DCS-4
Departmental Computing Services
Control & Configure with PanoManager
UNCLASSIFIED
DCS-4
Departmental Computing Services
Managing Devices
UNCLASSIFIED
DCS-4
Departmental Computing Services
Managing Users with Collections
UNCLASSIFIED
DCS-4
Departmental Computing Services
Virtual Performance: Servers & Desktops
UNCLASSIFIED
Resource Use OverviewDCS-4
Departmental Computing Services
UNCLASSIFIED
DCS-4
Departmental Computing Services
DCS-4 Virtual Infrastructure
UNCLASSIFIED
DCS-4
Departmental Computing Services
Status & Development Goals• Initial Configuration
– DCS-4 Obtained and Configured the Initial “Test” Servers and Desktops
– (2) 42 TB Nexsan SataBeast Fibre Channel Storage Provided and Configured on Network
• Infrastructure Upgrade (moving toward production)• Phase I Completion
– Transition all Common Use Workstations (CUWs) to Virtual Machines by End of FY 2009
– Transition Servers & Desktops to VMs end of FY 2010