Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

ADV1593BE Horizon Apps and JMP: Technical Deep Dive Barak Nissim Systems Engineer - EUC Practice, VMware Hilko Lantinga Technical Marketing Architect EUC, VMware #VMworld #ADV1593BE

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitment from VMware to deliver these features in any generally available product. Features are subject to change, and must not be included in contracts, purchase orders, or sales agreements of any kind. Technical feasibility and market demand will affect final delivery. Pricing and packaging for any new technologies or features discussed or presented have not been determined. 2

VMware Horizon Apps and JMP 1 Overview 2 App Volumes 3 Instant Clones 4 Workspace One 5 User Environment Manager VMworld 2017 Content: Not for 6 Deployment Practices Instant Clones App Volumes publication User Environment Management 3

Desktops and Apps From a Single Platform Centrally and securely deliver, manage and monitor desktops and apps on premises to end users across devices and locations. VMware Horizon or Desktops Manage & Deliver Desktops Manage & Deliver Applications distribution Adaptive & Contextual User Experience Support for Windows and Linux VMware vsphere Applications 4

JMP Technologies Eliminate Cost and Complexity Instant Clones App Volumes User Environment Management Ultra-fast Desktop Provisioning Real-Time App Delivery Contextual Policy Management 5

Logical Architecture VMware Instant Clone Technology Master Image View Composer Linked Clones Master Image RDSH Horizon Agent Windows Application Pools RDSH Farms RDSH Horizon Agent Windows Horizon Clients Connection Server RDSH Horizon Agent Windows vsphere Desktop Horizon Agent Windows Desktop Pools Desktop Horizon Agent Windows Internet VMware Unified Access Gateway User Environment Manager Policy Desktop Horizon Agent Linux AppStacks App Volumes Manager 6

Horizon Apps and JMP Demo Workflow App Volumes Horizon Horizon WS1 WS1 UEM UEM Assign AppStack to Active Directory OU Provision Instant Clone RDSH Farm Create Application Pools Entitlements Sync From Horizon User Login Configure and Apply Pre-Defined App Settings Configure and Apply Horizon Smart Policies 7

VMware Horizon Apps and JMP 1 Overview 2 App Volumes 3 Instant Clones 4 User Environment Manager 5 Deployment Practices Instant Clones App Volumes User Environment Management 8

Managing Horizon RDS Hosted Apps With App Volumes APP OS VMworld 2017 Content: Not for Faster delivery and updates at scale Fewer images to manage publication Isolate apps as needed with App Isolation Centralized analytics and management 9

Complete Application Lifecycle Management Quickly deliver, update, and retire any set of applications Logically manage applications based on line of business requirements. VDI Update immediately, or next login. or distribution RDSH Simplify management of all of your core applications through one AppStack 10

App Volumes with Horizon Apps (RDSH) Horizon Instant Clone Farm Storage (VSAN / VMFS / NFS / Local SSD) Design Decisions Assign AppStacks to RDS host computer objects, not user objects. For Instant Clone RDSH, assign AppStacks to the OU where the RDS host computer objects reside. Do not assign directly to computer objects or AD groups containing computer objects. Supports Windows Server 2008 R2 and 2012 R2. No writable volumes with RDSH. vsphere 11

Horizon Apps and JMP - Workflow App Volumes Horizon Horizon WS1 WS1 UEM UEM Assign AppStack to Active Directory OU Provision Instant Clone RDSH Farm Create Application Pools Entitlements Sync From Horizon User Login Configure and Apply Pre-Defined App Settings Configure and Apply Horizon Smart Policies 12

VMware Horizon Apps and JMP 1 Overview 2 App Volumes 3 Instant Clones 4 User Environment Manager 5 Deployment Practices Instant Clones App Volumes User Environment Management 14

Provisioning RDSH Instant Clone Farms Overview Leverages vmfork in vsphere 6.0 U1 and later. Cloning and customization done without reboots of the guest OS. Provision RDSH Farms and Desktop pools. Benefits Rapidly provision RDSH servers. VMworld 2017 Expand or shrink existing RDSH farm in seconds. Streamlined, rolling maintenance operations. Parent (Host 1) RDSH VMs Master VM Template Replica Content: Not for publication Parent (Host 2) RDSH VMs Parent (Host 3) RDSH VMs 15

Provisioning RDSH Instant Clone Farms Instant Clone RDSH with JMP AppStacks deliver published apps and RDSH-based desktops. User Environment Manager provides dynamic policy configuration and user personalization. Advantages Over View Composer Faster provisioning. Integrated with vsphere. No database required. Less resource-demand on vcenter Server. Improved maintenance operations. 16

Provisioning Instant Clones Disk Memory Master Snapshot Priming: Image Push Internal Template Delta Disk Linked Disk VMworld 2017 Replica Full Clone Thin Provisioned Parent Delta Disk Linked Disk Parent VM Active Memory Copy Copy Cloning Instant Clone Delta Disk Copy-on-Write Linked Disk Copyon-Write Content: Not for publication Instant Clone Active Memory TPS Shared Memory COW 17

Add or Remove RDS Hosts from the Farm Instantly VMworld 2017 Priming process is done at farm creation. Or when farm is updated. Active Parent VMs are created on each vsphere host. Individual RDS Hosts are Instant Clones Rapidly created, customized and available. Can scale up or down existing farms rapidly by editing the farm settings. Content: Not for publication Set the minimum number of ready VMs to achieve rolling server updates when performing maintenance. 18

Workspace ONE - Portal 23

VMware Horizon Apps and JMP 1 Overview 2 App Volumes 3 Instant Clones 4 User Environment Manager 5 Deployment Practices Instant Clones App Volumes User Environment Management 28

VMware User Environment Manager IT User Environment Manager IT Settings User Personalization and Profiles Dynamic Policy Virtual Physical Cloud 29

Consistent and Personalized Access Across Devices Personalized Published App Settings Persist to Virtual Desktop at login Dynamic adaptation according to device or location Policy follows user around for superior user experience or distribution Quickly add/remove profile and personalization services 30

Dynamic Policy Configuration Based on Conditions Cloud Desktop Virtual Desktop Physical Desktop Printer Settings Network Mappings ADMX Based Settings Horizon 7 Smart Policies Application Blocking Application Settings Conditions 31

Horizon Smart Policies Overview Horizon platforms & User Environment Manager integration to enable, disable or restrict: USB Redirection Printing Clipboard Client Drive Redirection HTML Access File Transfer Bandwidth Profile for PCoIP & Blast Extreme Benefits Single location for granular user experience management on Horizon platforms Horizon, Horizon Cloud (On Prem/Hosted) and Horizon Apps 32

VMware Horizon Apps and JMP 1 Overview 2 App Volumes 3 Instant Clones 4 User Environment Manager 5 Deployment Practices Instant Clones App Volumes User Environment Management 37

Recommended Sizing - RDSH Sessions per RDSH 30-50 vcpu per RDSH vram per RDSH 4/8 32-64GB (~1GB/user) RSDH per ESX host 1 per 4 logical cores

Master Image Recommendations There are two recommended virtual CPU configurations when deploying RDSH, depending on workload: 4 sockets with 1 core per socket with a 1:1 virtual-to-physical CPU ratio 8 sockets with 1 core per socket with a 2:1 virtual-to-physical CPU ratio The amount of memory assigned should be reserved and assessed by actual application usage. Install all available updates to Microsoft Windows. Run the VMware OS Optimization Tool with the default options. Reclaim space: Use the Windows built-in Disk Cleanup utility to delete unnecessary files. Empty space should be zeroed so the space can be reclaimed. Sysinternals SDelete on Windows. Example: sdelete64.exe z c: On a VMFS 5 volume run vmkfstools -K /path/to/disk-name.vmdk. On non-vmfs volumes, you can clone to a thin disk.

RDS Design Considerations Use Group Policies to secure and harden the RDS hosts. For example: Restrict access to system (C:) drive, set default application folders (Network home drive), redirect My Documents, map network printers. Empty Session timeout is 1 minute (default). Both Application Pools and Desktop Pools can use the same RDS Farm. If an RDS hosted desktop and remote application is launched, two sessions can be established to the same host. Delete profiles at log off. User Environment Manager Advanced ADMX template. https://kb.vmware.com/kb/2145286 Use Mandatory profiles. http://bit.ly/2j4jdk1 40

Horizon Apps Recommendations Use Instant Clones to provision RDS hosts every two seconds. Consider optimizing the RDSH load balancing algorithm using performance metrics. For more information, see Configuring Load Balancing for RDS Hosts in View Administration. Utilize Horizon Smart Policies to optimize Admin control and User experience. Design a strategy for printing. For more information, see Choosing Printing Options for VMware Horizon 7. Optimize anti-virus by disabling real-time scanning of low-risk folders like C:\SVROOT (App Volumes). Schedule maintenance operations.

Recurring Maintenance Automated Maintenance Scheduled Maintenance. Daily, weekly, monthly. Regularly delete and recreate the RDSH Instant Clones. Can update to a new Master snapshot. Subsequent times will use the same Master snapshot. A minimum amount of RDS Hosts are kept available during maintenance. Use case Regularly regenerate the RDSH Instant Clones. Automatically keep RDSH farm at optimal condition. 42

Immediate Maintenance Overview A one off update or refresh of the RDSH farm. Use the same or a new Master snapshot. Can be Immediate or at a specific time. What Happens: Old RDS Hosts are deleted. New Parent VMs are created if updating to a new snapshot. New RDS Host Instant Clones are created. A minimum number of RDS Hosts are kept available during maintenance. Benefits VMworld 2017 Push urgent security patches or updates. One off regeneration of the RDSH Instant Clones. Content: Not for publication 43

Image Choice For both Immediate and Recurring maintenance. Choose Master VM snapshot to use. Use current: No push of Master to create new parents. Old RDS Host VMs deleted. New RDS Host VMs created. Use another snapshot: Old RDS Host VMs deleted. New parents are created on vsphere hosts. New RDS Hosts created. 44

Additional Resources App Volumes Deployment Considerations https://www.vmware.com/content/dam/digitalmarketing/vmware/en/pdf/techpaper/vmware-app-volumes-deploymentconsiderations.pdf Publishing Applications with VMware Horizon 7 https://www.vmware.com/content/dam/digitalmarketing/vmware/en/pdf/techpaper/vmware-horizon-7-applicationpublishing.pdf VMware Horizon 7 Enterprise Edition Reference Architecture https://www.vmware.com/content/dam/digitalmarketing/vmware/en/pdf/techpaper/vmware-horizon-7-enterprisevalidated-integration-design-reference-architecture.pdf VMware Horizon 7 Enterprise Edition Multi-Site Reference Architecture https://www.vmware.com/content/dam/digitalmarketing/vmware/en/pdf/techpaper/vmware-horizon-7-enterpriseedition-reference-architecture-multi-site.pdf Best Practices for Published Applications and Desktops in VMware Horizon Apps and VMware Horizon 7. https://www.vmware.com/content/dam/digitalmarketing/vmware/en/pdf/techpaper/vmware-horizon-7-apps-publishedapplications-desktops-best-practices.pdf VMware Horizon App Performance Reference Architecture https://www.vmware.com/content/dam/digitalmarketing/vmware/en/pdf/techpaper/vmware-horizon-apps-referencearchitecture-performance.pdf 45