ZENworks Mobile Workspace High Availability Environments. September 2017

Similar documents
ZENworks Mobile Workspace ios Installation. September 2017

ZENworks Mobile Workspace Backup and Restore. September 2017

ZENworks 2017 Subscribe and Share Reference. December 2016

ZENworks Mobile Workspace Installation Guide. September 2017

ZENworks Mobile Workspace Analytics. September 2017

In ZENworks, Join Proxy is a role that is by default assigned to Primary Servers; you can also assign this role to Satellites.

ZENworks 2017 Update 1 HTTP Proxy Reference. July 2017

Service Desk Mobile App 1.0 Mobile App Quick Start. March 2018

ZENworks Service Desk 8.0 Using ZENworks with ZENworks Service Desk. November 2018

Server Installation ZENworks Mobile Management 2.6.x January 2013

ZENworks 11 Support Pack Product Licensing Reference. October 2016

Document Sub Title. Yotpo. Technical Overview 07/18/ Yotpo

BlackBerry Enterprise Server for IBM Lotus Domino Version: 5.0. Administration Guide

3 Planning to Deploy ZENworks 2017 Update 3

SharePoint 2016 Administrator's Survival Camp

ZENworks Mobile Workspace Configuration Server. September 2017

Service Desk 7.2 Installation Guide. March 2016

ZENworks 2017 Patch Management Airgap Solution. 1 About the Airgap Solution. 2 Prerequisites. December 2017

ZENworks 2017 Update 2 Endpoint Security Agent Reference. February 2018

EASYHA SQL SERVER V1.0

Module 1: Understanding and Installing Internet Information Services

Course 20764: Administering a SQL Database Infrastructure

In ZENworks Control Center you can specify IPv6 address in all the IP address fields.

Vendor: Microsoft. Exam Code: Exam Name: Implementing an Advanced Server Infrastructure. Version: Demo

BlackBerry Enterprise Server for Microsoft Exchange Version: 5.0. Feature and Technical Overview

3 Planning to Deploy ZENworks 2017 Update 2

ZENworks Mobile Workspace

ZENworks 2017 Update1 Full Disk Encryption Emergency Recovery Reference. July 2017

MOC 20417C: Upgrading Your Skills to MCSA Windows Server 2012

Installation Guide Advanced Authentication Server. Version 6.0

Protecting Microsoft SQL Server databases using IBM Spectrum Protect Plus. Version 1.0

ZENworks 2017 Update 1 Quick Reference - Bundle Features and Options

BlackBerry Enterprise Server for IBM Lotus Domino Version: 5.0. Feature and Technical Overview

Administering a SQL Database Infrastructure (M20764)

Maintaining a Microsoft SQL Server 2005 Database Course 2780: Three days; Instructor-Led

Oracle Privileged Account Manager

Microsoft Administering a SQL Database Infrastructure

Mobile MOUSe EXCHANGE SERVER 2010 CONFIGURATION ONLINE COURSE OUTLINE

Evaluation Guide Host Access Management and Security Server 12.4 SP1 ( )

GroupWise 18 Administrator Quick Start

Duration: 5 Days Course Code: M20764 Version: B Delivery Method: Elearning (Self-paced)

GroupWise Messenger 18 Installation Guide. November 2017

1 What s New in ZENworks 2017 Update 4. 2 Planning to Deploy ZENworks 2017 Update 4

Core Solutions of Microsoft Skype for Business 2015

Single Sign-On Showdown

App Orchestration 2.0

Administering a SQL Database Infrastructure

ZENworks 2017 What s New Reference. December 2016

CXA Citrix XenApp 6.5 Administration

TECHNICAL WHITE PAPER DECEMBER 2017 VMWARE HORIZON CLOUD SERVICE ON MICROSOFT AZURE SECURITY CONSIDERATIONS. White Paper

WebADM and OpenOTP are trademarks of RCDevs. All further trademarks are the property of their respective owners.

SQL Server Course Administering a SQL 2016 Database Infrastructure. Length. Prerequisites. Audience. Course Outline.

DIGIPASS Authentication for Check Point VPN-1

Quest VROOM Quick Setup Guide for Quest Rapid Recovery for Windows and Quest Foglight vapp Installers

Microsoft. Designing Database Solutions for Microsoft SQL Server 2012

Installation, Storage, and Compute with Windows Server

GroupWise Mobility Quick Start for Microsoft Outlook Users

Setting Up Quest QoreStor with Veeam Backup & Replication. Technical White Paper

Citrix XenApp 6.5 Administration

CONFIGURING SQL SERVER 2008 REPORTING SERVICES FOR REDHORSE CRM

Course CXA-206: Citrix XenApp 6.5 Administration

ZENworks 2017 Audit Management Reference. December 2016

Q&As Recertification for MCSE: Server Infrastructure

Office and Express Print Release High Availability Setup Guide

Oracle WebLogic Server 12c on AWS. December 2018

ZENworks 11 Support Pack 4 Endpoint Security Agent Reference. October 2016

MOC 20411B: Administering Windows Server Course Overview

BlackBerry Enterprise Server for Microsoft Office 365. Version: 1.0. Administration Guide

ApsaraDB for Redis. Product Introduction

Upgrading Your Skills to MCSA Windows 8

Duration Level Technology Delivery Method Training Credits. Classroom ILT 5 Days Advanced SQL Server

CMB-207-1I Citrix Desktop Virtualization Fast Track

Installing and Configuring VMware Identity Manager Connector (Windows) OCT 2018 VMware Identity Manager VMware Identity Manager 3.

Saving SharePoint Admin 100 (Sponsor) Sean McDonough Idera

Quest VROOM Quick Setup Guide for Quest Rapid Recovery for Windows and Quest Foglight vapp Installers

10972: ADMINISTERING THE WEB SERVER (IIS) ROLE OF WINDOWS SERVER

NetIQ Privileged Account Manager 3.5 includes new features, improves usability and resolves several previous issues.

Microsoft Upgrading Your Skills to Windows Server 2016

Data collected by Trend Micro is subject to the conditions stated in the Trend Micro Privacy Policy:

JPexam. 最新の IT 認定試験資料のプロバイダ IT 認証であなたのキャリアを進めます

VMware AirWatch Cloud Connector Guide ACC Installation and Integration

CXA-204-1I Basic Administration for Citrix XenApp 6

Course 10972B: Administering the Web Server (IIS) Role of Windows Server

Implementing Microsoft Azure Infrastructure Solutions

"Charting the Course... MOC C: Administering an SQL Database Infrastructure. Course Summary

Scaling for the Enterprise

WHITE PAPER. Good Mobile Intranet Technical Overview

Filr 3.3 Using Micro Focus Filr with Microsoft Office and Outlook Applications. December 2017

Upgrading Your Skills to Windows Server 2016

Training 24x7 DBA Support Staffing. Administering a SQL Database Infrastructure (40 Hours) Exam

ArcGIS Enterprise: Configuring Backups, Disaster Recovery, and Replication. Harrold Sompotan and Patrick Jackson

AUTHORIZED DOCUMENTATION. Using ZENworks with Novell Service Desk Novell Service Desk February 03,

Cloud Computing /AWS Course Content

EMC VNX Series: Introduction to SMB 3.0 Support

AWS Solution Architecture Patterns

Copyright. Copyright Ping Identity Corporation. All rights reserved. PingAccess Server documentation Version 4.

Administering a SQL Database Infrastructure (20764)

SECURE, FLEXIBLE ON-PREMISE STORAGE WITH EMC SYNCPLICITY AND EMC ISILON

How Microsoft Built MySQL, PostgreSQL and MariaDB for the Cloud. Santa Clara, California April 23th 25th, 2018

Configuring ApplicationHA in VMware SRM 5.1 environment

Transcription:

ZENworks Mobile Workspace High Availability Environments September 2017

Legal Notice For information about legal notices, trademarks, disclaimers, warranties, export and other use restrictions, U.S. Government rights, patent policy, and FIPS compliance, see https://www.novell.com/company/legal/. Copyright 2017 Micro Focus Software Inc. All Rights Reserved.

TABLE OF CONTENTS 1 Overview... 3 2 Principle... 3 3 Workflow... 4 4 Fail Over... 5 4.1 Data Recovery... 6 5 Load Balancing... 7 6 Multisite... 8 2 9

1 OVERVIEW This document aims to describe at a high level how ZENworks Mobile Workspace components can be used in high availability environments. If you intend to put in place such configuration, please contact your solution provider to define the best solution according to your needs. 2 PRINCIPLE The server is composed of the following components: ZENworks Proxy Main site ZENworks Security Authentication server - ZENWorks Security server: This component is stateful since the existing sessions are in-memory. A session contains all the information about the user, its credentials and the session key that is being generated for each new session. A database is used to persist the shared keys between the apps and the server. The Security server is responsible for: o Synchronization and authentication of users; o Handling the shared keys between the clients and the server; o Creation and validation of sessions; o Handling the distribution and update of the apps. To answer high availability constraints, this server must be replicated as well as its database. - ZENWorks Proxy server: This component is stateless. Multiple Proxy servers can be deployed per security server. A proxy server is responsible for: o Decryption and encryption of inbound and outbound communication o Sending a request to the security server for information about the validity of the session o Validation of the app context 3 9

To answer high availability constraints multiple Proxy servers can be deployed for every Security server in order to dispatch the processing charges. 3 WORKFLOW The following workflow will enable you to understand the interaction between all the different components of the solution. ZENworks Proxy ZENworks Security The main steps to get access to backend resources from mobile devices are as follows: 1. The mobile device establishes a secure channel to the ZENworks Mobile Workspace Security server. 2. The Security server creates a session and sends back the session ID to the device. 3. The device establishes a connection with the ZENWorks Proxy server and gives the previously retrieved session ID. Therefore, all further requests will go through the Proxy. 4. The Proxy server requests an authorization to the Security server according to the session ID 5. The Security server grants access to the user according to the session ID. 6. The Proxy decrypts and provides access to the backend resources. 4 9

4 FAIL OVER The Security server is a critical component. If it fails it will temporarily prevent any Proxy from granting access to backend resources. However, a fail over mechanism can be easily implemented by only replicating the database. In the case of a service interruption of the Security server, the end user would just have to re-open a session by entering his or her credentials with the failover instance. Replication of the database that contains the shared keys can be done on a regular basis with SQL script or by using the database in master/slave mode. The following schema explains how the failover instance can be setup: ZENWorks Server DRP site Devices will always connect to resolved hostname ZENWorks DB must be synchronized with main site ZENWorks DB Authentication server DNS failover ZENWorks DB Main site ZENWorks Server Authentication server 5 9

4.1 Data Recovery To be able to recover quickly after a crash and to avoid users from re-enrolling, the most important thing to backup is the Security server database. As installation of ZENworks Mobile Workspace may take less than 5 minutes, a full installation with database import can take less than 15 minutes. To backup the database, 3 methods are available. 4.1.1 VM Snapshot This is the easiest way to back up the whole server but the service may be disrupted during the Snapshot (in case of a heavy load). Copying the VM Snapshot to a recovery site may take time. 4.1.2 Databases Export/Import The most efficient way is to backup the database every 5 minutes on a remote folder. In case of a crash, you will be able install ZENworks Mobile Workspace again on the recovery site and import the database. You can follow the instructions from the Backup and Restore guide. 4.1.3 Live Synchronization In a critical environment, failover must almost be done instantly. The ZENworks Mobile Workspace database can work in master-slave mode so any change on the master will be replicated on the slave. 6 9

5 LOAD BALANCING The Proxy server relies on the Security server to grant access to backend resources, for this reason it is possible to deploy as much as needed of the Proxy. Most of the traffic will go through it and that can overload it. A load balancer must be set up in front of a Proxy farm to guarantee load balancing and failover. Therefore, if a Proxy node in the farm fails, the charge will be dispatched among the others. The following schema explains the architecture of both Proxy load-balancing and Security failover. ZENworks Security Server FO Load balancer ZENworks Proxy Farm DNS failover ZENworks DB cluster ZENworks Security Server Main site 7 9

6 MULTISITE Having a farm of Proxy can be also interesting to avoid overloading the intranet bandwidth. The following scheme shows a common way to provide access from devices to intranet resources of a multi-site company. Slave site VPN user@slave ZENworks Security user@master ZENworks Proxy Master site 8 9

With ZENworks Mobile Workspace you can get close to your resources to avoid network equipment overload and faster access. Therefore, a different mobile client will be provided to allow the user to be authenticated against the main Security server but get access to its Proxy through another URL. Slave site ZENWorks Proxy ZENwroks Security user@slave user@master ZENworks Proxy Master site 9 9

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback