vmware virtual desktop infrastructure (vdi) - the … enterprise virtualcenter ... virtual desktop...
TRANSCRIPT
© Copyright 2008 EMC Corporation. All rights reserved.
VMware Virtual Desktop Infrastructure (VDI) -The Best Strategy for Managing Desktop
EnvironmentsMike Coleman, VMware
Agenda
VDI Overview VMware VDI Solution TodayVMware VDI ComponentsConnection ModelsVDM 2.1 New FeaturesUpcoming Technology
Questions and Answers
VMware VDI Solution Today
VDM Client
VDM Web Access
VDM Integrated
Thin Clients
RDP/HTTPS
RDP
Windows XPWindows Vista
Optional integration with RSA SecurID
Automated provisioning and desktop management
DMZ deployment option
Integrated solution including:
VI3 EnterpriseVirtualCenter Virtual Desktop Manager 2
VDM2 – Components: Connection Server
VMware Virtual Desktop Manager 2:An enterprise-class connection broker that connects remote clients to centralized desktops and manages virtual desktop infrastructure (VDI) environments.
VDM2 is a Microsoft Windows Service with:
► Variety of desktop management systems► Automatic Provisioning / VM Control► Secure Connection Tunneling► Microsoft Active Directory Integration► Client devices access► Redundant solution
Introduction to VMware VDM 2.1
VMware VDM 2.1:
Brokers connections with users virtual desktops
Manages authentication and entitlements
Integrated with the VI3 platform
Robust and scalable for the Enterprise
Easy to deploy and administer in large or smaller environments
Fully-featured, enterprise-class connection broker
VDM Components
VDM Connection Server
Connects clients to hosted virtual desktops; It is the primary component of VMware VDM and is integrated with Active Directory and VirtualCenter
VDM Security Server
is a ‘gateway’ that provides SSL encryption of protocol and a controlled access point for use with firewalls and DMZ
Connects users to the VDM Connection ServerVDM Client
VDM Agent Handles session management
How VMware VDM Works
Laptop
VMware Infrastructure (Host Datacenter)
ESX Servers
A DB C E F
VDM Client
VDM Connection Server
Active Directory
User connect to the Connection Server using the VDM Client.
1
2Users get authenticated.
3
After authentication users are seamlessly logged on to their virtual desktop.
4C
VMware VDM Integrated with VirtualCenter
Laptop
VMware Infrastructure (Host Datacenter)
ESX Servers
A DB C E F
VDM Client
VDM Connection Server
Active Directory
User connect to the Connection Server using the VDM Client.
VirtualCenter
VDM 2 – Components: VDM Agent
VMware VDM AgentEnables communication between the virtual machine and VDM Connection Server using the message bus.
Agent installed on the virtual machine
Windows XP Professional with SP2/SP3 (32-bit)
Windows Vista Business Edition (32-bit)
Windows Business Ultimate Edition (32-bit)
Installs the virtual machine USB redirect drivers
VDM 2 – Components: VDM Client
VMware VDM ClientA Win32 application installed on PCs or thin clients to make connections with virtual desktops
Provides USB device redirection:XP – XPe – Vista
Support for:Vista HomeVista Home Premium, Business, UltimateXP Professional (SP2&SP3)2000 Professional (SP4)XPe
Requires the PC or thin client to have a local RDP client Windows PCs – RDP Client 6.X XPe thin clients – RDP 6.x
VMware VDM 2 - Components
VMware VDM WebAccessProvides access to virtual desktops using a web browserSupported on Mac - Experimental, Windows and Linux Works with PC’s and most thin clients with a local browserWindows Support
XP SP1-SP2, Vista Home, Home Premium, Business, UltimateInternet Explorer 6.x or higherUses TSAC ActiveX Requires Local Admin Rights to install
Linux Support Firefox 1.5, 2.0JRE 1.5.0 or HigherRequires locally installed RDesktop
MAC Support – ExperimentalSafari – Firefox 1.5, 2.0JRE 1.5.0 or Higher RDC 5.x client
VDM Data and ADAM
VDM 2 Stores data in Active Directory Application Mode (ADAM):Free and re-distributable from Microsoft, bundled with VMware VDM;
Flexible LDAP directory based on Active Directory (AD) technologies;
ADAM stores VMware VDM data (e.g. desktop entitlements) and references AD data (i.e. users and user groups);
Data replication, security and scalability inherent to VMware VDM 2 architecture.
VDM Data
User Data
ADADAM
ReplicationReplicationReplication
Replication
Replication
Replication
Reference
How Users Connect to their Virtual Desktops
SingleUser
VMware Infrastructure (Host Datacenter)
ESX Servers
A DB C E F
VDM Connection Server
Finance Group
How Users Connect to their Virtual Desktops
SingleUser
VMware Infrastructure (Host Datacenter)
ESX Servers
A DB C E F
VDM Connection Server
Finance Group
• Entitlements stored as data in VDM Connection Server
• Entitlements are applied in real time
• Administrator can easily modify which desktop a user (or user group) can access by modifying the entitlements
Encrypted and Direct Connections
Encrypted Connection:SSL tunnel between client and data center;RDP data encrypted inside tunnel.
RDP Connection
SSL Tunnel
Direct Connection:Connect to VDM Connection Server for brokering;Direct connection.
RDP Connection
Desktop AllocationInitial connection and request
Individual Desktops
Individual users
Individual desktops
Unique virtual desktops
Pool Assignment – Persistent Pool
Group of users
Desktops Pool of virtual desktops
Pool Assignment – Persistent Pool
Group of users
Desktops Pool of virtual desktops
User is connected to same desktop on subsequent connections
All virtual desktops in pool are cloned from same template
Initial desktop allocation could be to any desktop in pool
Pool Assignment – Non-Persistent Pool
Group of Users
Desktops Pool of virtual desktops
Pool Assignment – Non-Persistent Pool
Group of Users
Desktops Pool of virtual desktops
All virtual desktops in pool are cloned from same template
Desktop allocation could be to any desktop in pool
Desktop returned to pool for re-allocation at logoff
VMware VDM 2 – Deployment Scenarios
VDM 2 Connection Server – Remote Access
Virtual Desktopsrunning on ESX
VirtualCenter
Active Directory
VDM Client
VDMSecurityServers
LoadBalancing
VDMConnection
Servers
DMZ
VDM2.1 – Key Features
MMR for XP clientsMulti-media traffic is detected by the VDM Agent running in the guest VDI desktop
Traffic is re-directed over an RDP virtual channel and then rendered locally by software running within the VDM Client
Supports MPEG 1,2,4, MP3, WMA, WMV 7,8,9, AC3
No Quicktime or Flash support
VDM Agent
VDM Client
VDM2.1 – Key Features
Pools to span data-storesCurrent limitations
Best practices published by storage vendors to limit the size of each LUN to a fixed sizeEach VMFS volume on ESX server can only run a limited number of virtual machines
New feature will support multiple datastores per pool allowing hundreds of virtual machines to be created in a single logical VDM pool
VDM 2.1 – Other Features
Datastore Spanning for Pools
German and Japanese Localization
CLI for VDM Client
MMR Extensions integrated with VDM Client (Windows XP)
Allow end user password change
Multiple Sessions per user within a pool
Logging improvements
Allow users to restart their VM
Defined process for bulk import of individual desktops
VDM configuration backup
Allow blocking of incoming RDP connections from non VDM clients
Allow VDM Administrators to set default desktop (Command line only)
Technology Preview – Scalable Virtual Images
Traditional VDI VDI + SVI Clones
These features are representative of feature areas under development. Feature commitments must not be included in contracts, purchase orders, or sales agreements of any kind. Technical feasibility and market demand will affect final delivery.
APPLICATION
OPERATINGSYSTEM
APPLICATION
OPERATINGSYSTEM
APPLICATION
OPERATINGSYSTEM
APPLICATION
OPERATINGSYSTEM
APPLICATION
OPERATINGSYSTEM
APPLICATION
OPERATINGSYSTEM
APPLICATION
OPERATINGSYSTEM
APPLICATION
OPERATINGSYSTEM
APPLICATION
OPERATINGSYSTEM
APPLICATION
OPERATINGSYSTEM
APPLICATION
OPERATINGSYSTEM
APPLICATION
OPERATINGSYSTEM
APPLICATION
OPERATINGSYSTEM
APPLICATION
OPERATINGSYSTEM
APPLICATION
OPERATINGSYSTEM
APPLICATION
OPERATINGSYSTEM
APPLICATION
OPERATINGSYSTEM
APPLICATION
OPERATINGSYSTEM
APPLICATION
OPERATINGSYSTEM
OPERATINGSYSTEM
X86ARCHITECTURE
OPERATINGSYSTEM
X86ARCHITECTURE
OPERATINGSYSTEM
X86ARCHITECTURE
APPLICATION
OPERATINGSYSTEM
OPERATINGSYSTEM
X86ARCHITECTURE
OPERATINGSYSTEM
X86ARCHITECTURE
OPERATINGSYSTEM
X86ARCHITECTURE
APPLICATION
OPERATINGSYSTEM
OPERATINGSYSTEM
X86ARCHITECTURE
OPERATINGSYSTEM
X86ARCHITECTURE
OPERATINGSYSTEM
X86ARCHITECTURE
APPLICATION
OPERATINGSYSTEM
Scalable Virtual Images
These features are representative of feature areas under development. Feature commitments must not be included in contracts, purchase orders, or sales agreements of any kind. Technical feasibility and market demand will affect final delivery.
SVI Storage Cost ReductionDramatically (90%+) reduce the amount of storage consumed
OPERATINGSYSTEM
X86ARCHITECTURE
OPERATINGSYSTEM
X86ARCHITECTURE
OPERATINGSYSTEM
X86ARCHITECTURE
APPLICATION
OPERATINGSYSTEM
25 MB Clone
25 MB Clone
25 MB Clone
10 GB OS
RATIO % SAVINGS
1:50 85%+
1:100 90%+
1:1,000 95%+
Questions?