A: SETTING UP VMware Horizon

Similar documents
EXPLORING MONITORING AND ANALYTICS VMware Horizon

Getting Started with VMware Horizon Cloud Service on Microsoft Azure

VMware Horizon Cloud Service on Microsoft Azure Administration Guide

VMware Horizon Cloud Service on Microsoft Azure Administration Guide

Cloud Pod Architecture with VMware Horizon 6.1

TECHNICAL WHITE PAPER DECEMBER 2017 VMWARE HORIZON CLOUD SERVICE ON MICROSOFT AZURE SECURITY CONSIDERATIONS. White Paper

ARCHITECTURAL OVERVIEW REVISED 6 NOVEMBER 2018

INSTALLATION AND SETUP VMware Workspace ONE

TECHNICAL WHITE PAPER AUGUST 2017 REVIEWER S GUIDE FOR VIEW IN VMWARE HORIZON 7: INSTALLATION AND CONFIGURATION. VMware Horizon 7 version 7.

Configuring VNet Peering For Azure

REVISED 6 NOVEMBER 2018 COMPONENT DESIGN: UNIFIED ACCESS GATEWAY ARCHITECTURE

VMWARE HORIZON CLOUD WITH VMWARE IDENTITY MANAGER QUICK START GUIDE WHITE PAPER MARCH 2018

MANAGING ANDROID DEVICES: VMWARE WORKSPACE ONE OPERATIONAL TUTORIAL VMware Workspace ONE

Horizon DaaS Platform 6.1 Service Provider Installation - vcloud

INTEGRATING OKTA: VMWARE WORKSPACE ONE OPERATIONAL TUTORIAL VMware Workspace ONE

CONFIGURING BASIC MACOS MANAGEMENT: VMWARE WORKSPACE ONE OPERATIONAL TUTORIAL VMware Workspace ONE

Configuring Single Sign-on from the VMware Identity Manager Service to Marketo

vrealize Production Test Upgrade Assessment Guide

Configuring Single Sign-on from the VMware Identity Manager Service to Bonusly

NETWORKING AND ACTIVE DIRECTORY CONSIDERATIONS ON MICROSOFT AZURE FOR USE WITH VMWARE HORIZON CLOUD SERVICE. VMware Horizon Cloud Service

VMware Horizon Migration Tool User Guide

Horizon Air 16.6 Release Notes. This document describes changes to Horizon Air for version 16.6

Configuring Single Sign-on from the VMware Identity Manager Service to Exterro E-Discovery

All you need to know about Horizon Cloud on Azure. Dennis Sigmond

REVIEWERS GUIDE NOVEMBER 2017 REVIEWER S GUIDE FOR CLOUD-BASED VMWARE WORKSPACE ONE: MOBILE SINGLE SIGN-ON. VMware Workspace ONE

Getting Started with VMware View View 3.1

Configuring Single Sign-on from the VMware Identity Manager Service to Trumba

VMWARE HORIZON CLOUD SERVICE HOSTED INFRASTRUCTURE ONBOARDING SERVICE SILVER

Configuring OneSign 4.9 Virtual Desktop Access with Horizon View HOW-TO GUIDE

PROVIDING SECURE ACCESS TO VMWARE HORIZON 7 AND VMWARE IDENTITY MANAGER WITH THE VMWARE UNIFIED ACCESS GATEWAY REVISED 2 MAY 2018

PRINTED 13 APRIL 2018 NETWORK PORTS IN VMWARE HORIZON 7

Configuring Single Sign-on from the VMware Identity Manager Service to Vizru

271 Waverley Oaks Rd. Telephone: Suite 206 Waltham, MA USA

APPLYING AND TROUBLESHOOTING PREDEFINED SETTINGS VMware Horizon

Microsoft Azure Course Content

VMware vrealize Suite and vcloud Suite

Service Description VMware Horizon Cloud Service on Microsoft Azure

REVISED 6 NOVEMBER 2018 COMPONENT DESIGN: VMWARE IDENTITY MANAGER ARCHITECTURE

Configuring VPC Peering For AWS

Multi-Machine Guide vcloud Automation Center 5.2

Service Description VMware Horizon Cloud Service on Microsoft Azure

Installing and Configuring vcloud Connector

Configuring Single Sign-on from the VMware Identity Manager Service to Collibra

VMware vcloud Air Accelerator Service

USING PRODUCT PROVISIONING TO DELIVER FILES TO WINDOWS 10: VMWARE WORKSPACE ONE OPERATIONAL TUTORIAL VMware Workspace ONE

Getting Started with VMware Cloud Assembly. 27 August 2018 VMware Cloud Assembly

Microsoft. AZ-100 EXAM Azure Infrastructure and Deployment. m/ Product: Demo. For More Information:

Getting Started with ESXi Embedded

CloudHealth. AWS and Azure On-Boarding

VMWARE HORIZON 7. End-User Computing Today. Horizon 7: Delivering Desktops and Applications as a Service

Horizon DaaS Platform 6.1 Patch 3

Horizon Console Administration. 13 DEC 2018 VMware Horizon 7 7.7

VMware Workspace ONE Quick Configuration Guide. VMware AirWatch 9.1

INTEGRATING WITH DELL CLIENT COMMAND SUITE: VMWARE WORKSPACE ONE OPERATIONAL TUTORIAL VMware Workspace ONE

Getting Started with Database Ingestion

Horizon Cloud with On-Premises Infrastructure Administration Guide. VMware Horizon Cloud Service Horizon Cloud with On-Premises Infrastructure 1.

vrealize Orchestrator Load Balancing

VMWARE TAP PROGRAM NOT FOR RESALE (NFR) SOFTWARE GUIDE

Horizon DaaS Platform 6.1 Release Notes. This document describes changes to the Horizon DaaS Platform for Version 6.1.

vrealize Orchestrator Load Balancing

Mobile Secure Desktop Implementation with Pivot3 HOW-TO GUIDE

Cloud Provider Pod Designer User Guide. November 2018 Cloud Provider Pod 1.0.1

Getting Started with ESX Server 3i Installable Update 2 and later for ESX Server 3i version 3.5 Installable and VirtualCenter 2.5

VMware vcloud Air. Enterprise IT Hybrid Data Center TECHNICAL MARKETING DOCUMENTATION

VMware Horizon FLEX 1.5 WHITE PAPER

Service Description VMware Workspace ONE

Deploying and Provisioning the Barracuda CloudGen WAF in the Classic Microsoft Azure Management Portal

vcloud Automation Center Reference Architecture vcloud Automation Center 5.2

Branch Office Desktop

VMware Cloud Provider Pod Designer User Guide. October 2018 Cloud Provider Pod 1.0

Microsoft Azure for AWS Experts

XenApp 7.x on Oracle Cloud Infrastructure

Migrating vrealize Automation 6.2 to 7.1

Configuring User VPN For Azure

WHITE PAPER SEPTEMBER 2017 VCLOUD DIRECTOR 9.0. What s New

VMWARE MICRO-SEGMENTATION AND SECURITY DEPLOY SERVICE

Request Manager User's Guide

Installing and Configuring vcloud Connector

VMware vcloud Director for Service Providers

vcloud Director Administrator's Guide

Integrating VMware Horizon Workspace and VMware Horizon View TECHNICAL WHITE PAPER

Getting Started with ESX Server 3i Embedded ESX Server 3i version 3.5 Embedded and VirtualCenter 2.5

Workspace ONE UEM Certificate Authority Integration with Microsoft ADCS Using DCOM. VMware Workspace ONE UEM 1811

Deploying VMware Workspace ONE Intelligent Hub. October 2018 VMware Workspace ONE

Branch Office Desktop

vrealize Automation Load Balancing

How to Configure VNET peering with the F-Series Firewall

vrealize Production Test

VMware AirWatch Integration with Microsoft ADCS via DCOM

Aviatrix Virtual Appliance

VMware vrealize Operations for Horizon Administration. 20 SEP 2018 VMware vrealize Operations for Horizon 6.6

VMware vrealize Operations for Horizon Administration. Modified on 3 JUL 2018 VMware vrealize Operations for Horizon 6.4

Advanced Architecture Design for Cloud-Based Disaster Recovery WHITE PAPER

Infoblox Installation Guide. vnios for Microsoft Azure

Monitoring Hybrid Cloud Applications in VMware vcloud Air

What s New in VMware vsphere 5.1 VMware vcenter Server

What s New in VMware vcloud Automation Center 5.1

IaaS Integration for Multi- Machine Services. vrealize Automation 6.2

Image Management for View Desktops using Mirage

VMware Promotions. Cloud Infrastructure and Management Promotions. Cloud Infrastructure and Management Promotions. Promotions Mobile App

Transcription:

GUIDE AUGUST 2018 PRINTED 11 JANUARY 2019 VMware Horizon

Table of Contents A: Setting Up About Setup Exercise A1: Reviewing the Workflow Exercise A2: Creating the VNet Exercise A3: Configuring VNet Peering (Optional) Exercise A4: Configuring the DNS Server Exercise A5: Creating a Service Principal Authentication Key Exercise A6: Assigning the Contributor Role to the Service Principal Exercise A7: Verifying Required Resource Providers GUIDE 2

Quick Start Tutorial for VMware Horizon Cloud on Microsoft Azure A: Setting Up About Setup These prerequisites exercises help you prepare your environment for best use of Horizon Cloud Service on Microsoft Azure. The exercises are sequential and build upon one another, so make sure to complete each exercise in this section before going to the next. First, you verify that your environment meets the basic prerequisites. Next, you create a new virtual network (VNet), one of the prerequisite Microsoft Azure components. You must bring your own Microsoft Azure IaaS capacity, and configure the Microsoft Azure prerequisites for the Horizon Cloud Service deployment. You set up network ranges based on previously provided CIDR blocks, select Active Directory options, complete VNet bi-directional peering, DNS configuration, and so on. Subsequent sections describe how to deploy the Horizon Cloud Service node on Microsoft Azure, and finally to create a farm where your end users can access applications and shared desktops, and assign dedicated and floating desktops. Exercise A1: Reviewing the Workflow Before you start, it is a good idea to review the workflow and tasks involved. You can use the navigation tool on the left to jump to each section: 1. Verify that your environment meets the prerequisites listed in VMware Horizon Cloud Service on Microsoft Azure Requirements Checklist. 2. See Deploying a Horizon Cloud Service Node Prepare the Microsoft Azure for node deployment. Deploy the node. 3. See Creating an Image Register Active Directory domain. Configure a master image. Install applications in the master image. Convert the master image into an assignable image. 4. See Deploying a Farm Create an RDSH farm to provide session desktops which you can assign to users and groups. Create a second RDSH farm to provide remote desktops which you can assign to users and groups. Create a CNAME record in your DNS server. 5. See Assigning VDI Desktops Assign a dedicated desktop. Assign a floating desktop. 6. See Explore Horizon Cloud Service Monitoring and Analytics Explore the reports and analytics functionality. 7. See Explore VMware User Environment Manager Explore the integration with User Environment Manager and capabilities. After you finish reviewing the workflow, verify that your environment meets all prerequisites, and then proceed to the next exercise to configure the VNet. Exercise A2: Creating the VNet You can deploy a Horizon Cloud Service node to an existing virtual network (VNet), or create a new VNet. But before you create a VNet, verify that your environment meets the prerequisites listed in VMware Horizon Cloud Service on Microsoft Azure Requirements Checklist. For more information, see Getting Started with VMware Horizon Cloud Service on Microsoft Azure. This exercise describes how to create a new VNet where Active Directory services are available. Microsoft Azure automatically creates the necessary subnets in the VNet using CIDR blocks that you provide. Horizon Cloud Service automates machine creation GUIDE 3

and domain join operations, and requires access to a VNet with AD services. A set of resource groups in your Microsoft Azure capacity is also automatically created. Resource groups organize the assets that the environment needs, such as virtual subnets and virtual machines (VMs) for the Unified Access Gateway, RDS-enabled server images, RDSH farms, and so on. 1. Log in to Microsoft Azure 1. Log in to your existing Microsoft Azure deployment. 2. Make sure to use a subscription that provides IaaS capacity. 2. Add a New Virtual Network GUIDE 4

1. In the navigation bar on the left, select Virtual Networks. 2. Click Add to create a VNet. 3. Provide Data for New VNet GUIDE 5

1. In the Create Virtual Network pane, provide the following information: Name: Enter a name to distinguish this VNet from others. Address space: Accept the default, or enter an address range. Subscription: Select from the drop-down menu. Resource group: Select an existing resource group, or create a new one when the virtual network is created. The value should not be empty: Create a new resource group or use an existing one. Location: From the drop-down menu, select the region where you plan to deploy the Horizon Cloud Service node. Subnet Name: Accept the default. Horizon Cloud Service automates the creation of the necessary subnets using the CIDR blocks previously provided. Address range: Accept the default. Service endpoints: Accept the default. 2. In the lower right corner, click Create. 3. Wait until the creation process is complete, and the VNet is created. For more information, see Getting Started with VMware Horizon Cloud Service on Microsoft Azure, and click Horizon Cloud Service on Microsoft Azure > 1.6 > Preparing to Deploy a Horizon Cloud Node into Microsoft Azure > Configure the Required Virtual Network in Microsoft Azure. After creating the VNET, proceed to the next section to configure bi-directional VNET peering. GUIDE 6

Exercise A3: Configuring VNet Peering (Optional) In this exercise, you use Microsoft Azure to configure bi-directional peering. You should configure VNet-to-VNet peering only if the following is true: You created a new VNet that does not have an AD VM inside it You are not using Express Route for VNet peering You are not using VPN for express route peering In this tutorial, it is assumed that another VNet is in the same region as the AD/DNS server, to which you are peering for access to those services. 1. Peering Connects the Horizon Cloud Service VNet on Microsoft Active Directory 1. 2. 3. 4. Select the Virtual Networks pane. Select a network. Click Peering. In the third pane on the right, verify that the peer is not yet connected. 2. Add Peering Details GUIDE 7

1. In the Add peering pane, provide the required information: Name: Enter a name to distinguish this action from others. Virtual network deployment model: Select the Resource manager option. Subscription: Select your subscription. Virtual network: Click Choose a virtual network, and select your VNet. Allow virtual network access: Verify that Enabled is selected. 2. Click OK. 3. VNet Peering Is Connected GUIDE 8

1. Locate the third pane. 2. Verify that VNet peering is now connected. 4. VNet Peering Overview Details 1. Locate the second pane. 2. Click Overview to display additional details in the third pane. For more information, see the Getting Started with VMware Horizon Cloud Service on Microsoft Azure guide. After you finish configuring the VNet, proceed to the next exercise to configure the DNS server. Exercise A4: Configuring the DNS Server Now that the VNet is configured, your next step is to configure the DNS, which is required during the Horizon Cloud Service node deployment. Horizon Cloud Service uses the default Microsoft Azure-provided DNS for the deployment for outbound DNS resolution, but requires Active Directory to resolve the Active Directory domain controllers. You must set the virtual network to support both internal and external name resolution. GUIDE 9

1. Microsoft Azure DNS Supports Name Resolution 1. In the navigation bar on the left, click Virtual networks. 2. Select the virtual network you want to use for your node. 3. Click DNS servers to display the DNS server settings. 2. Configure DNS Before Deploying the Horizon Cloud Service Node GUIDE 10

1. In the upper right, select the Custom option. 2. Add the address of the DNS server to use for name resolution. For more information, see Getting Started with VMware Horizon Cloud Service on Microsoft Azure. After you finish configuring the DNS server, proceed to the next exercise to create an authentication key for the service principal. Exercise A5: Creating a Service Principal Authentication Key Horizon Cloud Service needs a service principal to access and use your Microsoft Azure subscription capacity. A service principal defines the policy and permissions for use of an application in a specific tenant, and is used to grant Horizon Cloud Service permission to access and modify your Microsoft Azure tenant. When you register a Microsoft Azure AD application, the service principal is also created. For more information, see Create the Required Service Principal by Creating an Application Registration. In addition to the service principal, you must generate an authentication key and assign the Contributor role to the service principal at the subscription level. 1. Service Principal Settings GUIDE 11

1. Locate the service principal details window. 2. Click Settings to open the Settings menu. 2. Authentication Key Required to Deploy the Horizon Cloud Service Node 1. In the Settings menu, click Keys. 3. Authentication Key Security Policy GUIDE 12

1. In the Keys menu, provide the following information: Description: Enter a description of 16 characters or fewer, such as Hzn-Cloud-Key1. Expires: Set the duration of the key, based on your security policy. You can set the expiration to Never expires, or you can set a specific time frame. Caution: If you set a specific time frame, make sure to refresh the key before it expires, and enter the new key into the subscription information in the Horizon Cloud Service Administration Console. If the key expires without doing this, the associated node stops because Horizon Cloud Service cannot detect it. Value: Keep the Keys window open until you have copied and saved the key value. 2. Click Save. 4. Copy and Save the Authentication Key Because Irretrievable Later 1. Copy the unique key value. 2. Save the value securely, because you cannot retrieve it later. For more information, see Virtual Network Peering and Use Portal to Create an Azure Active Directory Application and Service Principal That Can Access Resources. After you finish creating an authentication key for the service principal, proceed to the next exercise to assign a role to the service principal. GUIDE 13

Exercise A6: Assigning the Contributor Role to the Service Principal The next step is to assign the contributor role to the service principal at the subscription level. 1. Make Note of the Subscription ID 1. In the navigation bar on the left, select Subscriptions. 2. Click the name of the subscription. 3. Copy and save the subscription ID to use when you deploy the node. 2. Add Permissions 1. Click Access control (IAM). 2. Click Add to display the Add permissions window. 3. Add Permissions Information GUIDE 14

1. In the Add permission window, provide the following information: Role: From the drop-down menu of built-in roles, select Contributor. Assign access to: From the drop-down menu, select Azure AD user, group, or application. Select: Search for and select the service principal by the name you gave it earlier. 2. Click Save. 4. Save the Service Principal 1. Click your service principal to select it 2. Click Save. GUIDE 15

After you finish assigning a role to the service principal, proceed to the next section to verify the required resource providers. Exercise A7: Verifying Required Resource Providers Verify that your subscription includes the registered resource providers that the node requires. 1. Navigate to Resource Providers 1. In the navigation bar on the left, select Virtual machines, and click the name of the subscription used with this node. 2. In the subscription menu, click Resource providers. 2. Verify That Required Resource Providers Are Registered GUIDE 16

In the Status column, verify that the following resource providers have a Registered status, and if they do not, register them: Microsoft.Compute microsoft.insights Microsoft.Network Microsoft.Storage 3. Verify Subscription-Based Values Required for Deployment GUIDE 17

1. In the navigation bar on the left, click Azure Active Directory > Manage. 2. In the second pane, click Properties. In the third pane, verify that you have the four subscription-based values required during node deployment: Subscription ID Azure Active Directory ID Application ID Application key value For more information, see Getting Started with VMware Horizon Cloud Service on Microsoft Azure. After you finish creating and configuring the service provider and verified that you have the subscription-related values required for deployment, proceed to the next section to deploy the Horizon Cloud Service node. GUIDE 18

VMware, Inc. 3401 Hillview Avenue Palo Alto CA 94304 USA Tel 877-486-9273 Fax 650-427-5001 www.vmware.com Copyright 2017 VMware, Inc. All rights reserved. This product is protected by U.S. and international copyright and intellectual property laws. VMware products are covered by one or more patents listed at http://www.vmware.com/go/patents. VMware is a registered trademark or trademark of VMware, Inc. in the United States and/or other jurisdictions. All other marks and names mentioned herein may be trademarks of their respective companies.

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback