Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Similar documents
Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

REVISED 6 NOVEMBER 2018 COMPONENT DESIGN: VMWARE IDENTITY MANAGER ARCHITECTURE

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Setting Up Resources in VMware Identity Manager. VMware Identity Manager 2.8

ARCHITECTURAL OVERVIEW REVISED 6 NOVEMBER 2018

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Setting Up Resources in VMware Identity Manager

REVIEWERS GUIDE NOVEMBER 2017 REVIEWER S GUIDE FOR CLOUD-BASED VMWARE WORKSPACE ONE: MOBILE SINGLE SIGN-ON. VMware Workspace ONE

Setting Up Resources in VMware Identity Manager (On Premises) Modified on 30 AUG 2017 VMware AirWatch 9.1.1

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Guide to Deploying VMware Workspace ONE. VMware Identity Manager VMware AirWatch 9.1

Guide to Deploying VMware Workspace ONE with VMware Identity Manager. SEP 2018 VMware Workspace ONE

Setting Up Resources in VMware Identity Manager 3.1 (On Premises) Modified JUL 2018 VMware Identity Manager 3.1

Deploying VMware Identity Manager in the DMZ. SEPT 2018 VMware Identity Manager 3.3

Guide to Deploying VMware Workspace ONE. DEC 2017 VMware AirWatch 9.2 VMware Identity Manager 3.1

Integrating VMware Workspace ONE with Okta. VMware Workspace ONE

Speaker Introduction Who Mate Barany, VMware Manuel Mazzolin, VMware Peter Schmitt, Deutsche Bahn Systel Why VMworld 2017 Understanding the modern sec

VMWARE HORIZON CLOUD WITH VMWARE IDENTITY MANAGER QUICK START GUIDE WHITE PAPER MARCH 2018

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

VMWARE S DESKTOP STRATEGY

Setting Up Resources in VMware Identity Manager (SaaS) Modified 15 SEP 2017 VMware Identity Manager

Table of Contents HOL VWS

Citrix Workspace. Lausanne Laurent Strauss Christophe Beaugrand

VMware Workspace ONE Quick Configuration Guide. VMware AirWatch 9.1

Deploying VMware Workspace ONE Intelligent Hub. October 2018 VMware Workspace ONE

Integrating AirWatch and VMware Identity Manager

VMWARE HORIZON 7. End-User Computing Today. Horizon 7: Delivering Desktops and Applications as a Service

Deploying VMware Identity Manager in the DMZ. JULY 2018 VMware Identity Manager 3.2

Android Mobile Single Sign-On to VMware Workspace ONE. SEP 2018 VMware Workspace ONE VMware Identity Manager VMware Identity Manager 3.

VMware EUC a competitor to Citrix? 2010 VMware Inc. All rights reserved

VMware Identity Manager Administration. MAY 2018 VMware Identity Manager 3.2

Installing and Configuring VMware Identity Manager Connector (Windows) OCT 2018 VMware Identity Manager VMware Identity Manager 3.

INTEGRATING OKTA: VMWARE WORKSPACE ONE OPERATIONAL TUTORIAL VMware Workspace ONE

Distribuire risorse desktop

CONFIGURING BASIC MACOS MANAGEMENT: VMWARE WORKSPACE ONE OPERATIONAL TUTORIAL VMware Workspace ONE

VMware Identity Manager Cloud Deployment. DEC 2017 VMware AirWatch 9.2 VMware Identity Manager

VMware Identity Manager Cloud Deployment. Modified on 01 OCT 2017 VMware Identity Manager

VMware Identity Manager Administration

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Configuring Single Sign-on from the VMware Identity Manager Service to Marketo

Horizon Workspace Administrator's Guide

REVISED 4 JANUARY 2018 VMWARE WORKSPACE ONE REFERENCE ARCHITECTURE FOR SAAS DEPLOYMENTS

NL VMUG UserCon 16 March 2017

Deploying Virtual Apps and Desktops with Citrix Provisioning using Oracle Cloud Infrastructure

Delivering Desktop Resources to Any Device As a Service

WHITE PAPER AIRWATCH SUPPORT FOR OFFICE 365

VMware AirWatch - Workspace ONE, Single Sign-on and VMware Identity Manager

Today s workforce is Mobile. Cloud and SaaSbased. are being deployed and used faster than ever. Most applications are Web-based apps

VMware End User Computing Global Demo Environment Walkthrough Guide

MANAGING ANDROID DEVICES: VMWARE WORKSPACE ONE OPERATIONAL TUTORIAL VMware Workspace ONE

Disclaimer This presentation may contain product features that are currently under development This overview of new technology represents no commitmen

Inside Symantec O 3. Sergi Isasi. Senior Manager, Product Management. SR B30 - Inside Symantec O3 1

AppController :21:56 UTC Citrix Systems, Inc. All rights reserved. Terms of Use Trademarks Privacy Statement

VMware Horizon Suite:

Configuring Confluence

Extend your datacenter with the power of Citrix Open Cloud

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Installing and Configuring VMware Identity Manager. Modified on 14 DEC 2017 VMware Identity Manager 2.9.1

Integrating VMware Horizon Workspace and VMware Horizon View TECHNICAL WHITE PAPER

Horizon Console Administration. 13 DEC 2018 VMware Horizon 7 7.7

VMware Identity Manager Administration

Integration Guide. SafeNet Authentication Client. Using SAC CBA for VMware Horizon 6 Client

Audience Profile Experienced system administrators and system integrators responsible for implementing desktop solutions

Agility 2018 Hands-on Lab Guide. VDI the F5 Way. F5 Networks, Inc.

SAP Security in a Hybrid World. Kiran Kola

VMware Enterprise Systems Connector Installation and Configuration. JULY 2018 VMware Identity Manager 3.2 VMware Identity Manager VMware AirWatch 9.

Architecting the Digital Workspace with VMware Horizon 7

VMware Workspace Portal End User Guide

Installing and Configuring VMware Identity Manager

VMware Horizon. VMware Horizon 7. Q. What are the key features of Horizon 7? Q. What is VMware Horizon?

Microsoft Windows Server 2008 R2 Remote Desktop Services Session Virtualization and VDI Microsoft RemoteFX

CONFIGURING AD FS AS A THIRD-PARTY IDP IN VMWARE IDENTITY MANAGER: VMWARE WORKSPACE ONE OPERATIONAL TUTORIAL VMware Workspace ONE

Administering Cloud Pod Architecture in Horizon 7. Modified on 4 JAN 2018 VMware Horizon 7 7.4

VMware AirWatch: Directory and Certificate Authority

VMware Workspace ONE UEM VMware AirWatch Cloud Connector

TECHNICAL WHITE PAPER DECEMBER 2017 VMWARE HORIZON CLOUD SERVICE ON MICROSOFT AZURE SECURITY CONSIDERATIONS. White Paper

VMware Horizon 6. Horizon 6 FAQ. Q VMware Horizon. VMware Horizon / / Horizon. Windows

Ramnish Singh IT Advisor Microsoft Corporation Session Code:

About This Document 3. Overview 3. System Requirements 3. Installation & Setup 4

NET1821BU THE FUTURE OF NETWORKING AND SECURITY WITH NSX-T Bruce Davie CTO, APJ 2

Table of Contents. VMware AirWatch: Technology Partner Integration

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

VMware Enterprise Systems Connector Installation and Configuration. Modified 29 SEP 2017 VMware AirWatch VMware Identity Manager 2.9.

Administering Workspace ONE in VMware Identity Manager Services with AirWatch. VMware AirWatch 9.1.1

Installing and Configuring VMware Identity Manager for Linux. Modified MAY 2018 VMware Identity Manager 3.2

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Transform to Your Cloud

VMware Horizon Migration Tool User Guide

Migrating vrealize Automation 6.2 to 7.2

PRINTED 13 APRIL 2018 NETWORK PORTS IN VMWARE HORIZON 7

VMware AirWatch Cloud Connector Guide ACC Installation and Integration

VMware Enterprise Systems Connector Installation and Configuration

VMware Horizon View 5.2 Reviewer s Guide REVIEWER S GUIDE

Table of Contents HOL ADV

Maximize your investment in Microsoft Office 365 with Citrix Workspace

XenApp 7.x on Oracle Cloud Infrastructure

Installing and Configuring VMware Identity Manager. DEC 2017 VMware AirWatch 9.2 VMware Identity Manager 3.1

VMware AirWatch Integration with Microsoft ADCS via DCOM

Slack Cloud App SSO. Configuration Guide. Product Release Document Revisions Published Date

Transcription:

ADV1591BE Delivering Virtual Desktops and Apps via the Digital Workspace with Workspace ONE and VMware Horizon VMworld 2017 Content: Not for publication Johan van Amersfoort & Stephane Padique #VMWORLD #ADV1591BE

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitment from VMware to deliver these features in any generally available product. Features are subject to change, and must not be included in contracts, purchase orders, or sales agreements of any kind. Technical feasibility and market demand will affect final delivery. Pricing and packaging for any new technologies or features discussed or presented have not been determined. 2

Agenda 1 What is Workspace ONE? 2 Setting up Horizon with Workspace ONE 3 User experience and Demo 3

Agenda 1 What is Workspace ONE? 2 Setting up Horizon with Workspace ONE 3 User Experience and Demo 4

IT/it used to be simple.. 5

Bridging Two Worlds Client-Server Era Mobile-Cloud Era 6

Bridging Two Worlds Client-Server Era Domain joined Network based security Managing devices OPEX heavy 1:150 ratio Slow Migration Projects Mobile-Cloud Era 7

Bridging Two Worlds Client-Server Era Domain joined Network based security Managing devices OPEX heavy 1:150 ratio Slow Migration Projects Mobile-Cloud Era Enrollment Identity based security Managing policies Massive scale 1:15 000 ratio Fast Continuous Delivery 8

Applications in the Enterprise Universal Windows Apps 9

Bridging Two Worlds Client-Server Era Mobile-Cloud Era 10

Bridging Two Worlds Client-Server Era Workspace One AirWatch ThinApp Flex Horizon BLAST Unified Access Horizon PCoIP Mirage VMware Identity Gateway App Volumes Manager UEM Horizon Cloud Mobile-Cloud Era 11

You can t transform business without a great user experience VMware Empowers the Digital Workspace VMworld 2017 Content: Not for publication You don t need to compromise security to get there 12

Simple App Delivery Through a Unified Catalog Web-based Mobile app Any app to any device 13

Agenda 1 What is Workspace ONE? 2 Setting up Horizon with Workspace ONE 3 User Experience and Demo 14

Simple Access to Apps & Desktops Access to Horizon 7 and Horizon Cloud desktops from Workspace ONE / IDM Full support for Horizon 7.x Virtual Desktops Published Applications Horizon Cloud Pod Architecture Single Sign On & True SSO Support for Horizon Air / Cloud Horizon Cloud Hosted with WS1 Horizon Cloud On-premises with IDM SSO to virtual desktops and apps Support for Citrix XenApp 5/6 XenDesktop 7.x 15

Horizon Deployment Options ACTIVE DIRECTORY Horizon Cloud with Hosted Infrastructure MOBILE USERS USER APP DATA CLOUD PROVIDER OPEX model of utility based pricing Scalability on demand Minimal internal expertise required Remote locations where building data center capacity is impossible SECURE VPN CUSTOMER IT ENVIRONMENT REMOTE USERS SECURE VPN CORP USER DEVICES Horizon Cloud with On-premises Infrastructure VIRTUAL DESKTOPS & APPS ON HYPER-CONVERGED INFRASTRUCTURE Hybrid OPEX/CAPEX model Management infrastructure in the cloud On-premises virtual desktops & apps on hyper-converged infrastructure Minimal internal expertise required and easily scalable G CLOUD PROVIDER CONTROL PLANE ACCESS POINTS ACTIVE DIRECTORY LOAD BALANCERS CAPEX Model CONNECTION BROKERS CUSTOMER IT ENVIRONMENT On Premises (Horizon 7) Greater flexibility in desktop options Scalable to customer requirements Feature rich management MANAGEMENT SERVERS SANSTORAGE ACTIVE DIRECTORY COMPUTE SERVERS RUNNING VIRTUAL DESKTOPS 16

Hosted Applications RDS Farm Connection Server VMware Identity Manager VMworld 2017 Content: Not for Get Resources, Entitlements publication Horizon Client 17

Horizon 7 Integration 18

End to End SSO with TrueSSO Streamlined single sign on to Horizon via Workspace ONE

Horizon TrueSSO VMworld 2017 Users authenticate to VMware Identity Manager using a variety of credential options Once authenticated, users select Horizon desktop or hosted application No need to enter AD credentials or SmartCard Uses SAML to connect the Identity Provider s (IdP) authentication with user s UPN for access to AD credentials Content: Not for publication True SSO generates unique, short-lived certificate to manage Windows logon process 20

Horizon TrueSSO Benefits VMworld 2017 Separates Authentication (validating a user s identity) from Access (user can use a Windows desktop or application Enhanced security. User credentials are secured by digital certificate, no passwords are vaulted or transferred within the datacenter Supports a wide range of authentication methods enterprises can select or change authentication protocols with limited impact to the infrastructure Content: Not for publication 21

Horizon TrueSSO Workflow 1 VMware Identity Manager 2 3 VMware Enrollment Service Horizon Broker VMworld 2017 Content: Not for 4 5 Microsoft Certificate Authority publication AD 6 Horizon Client 7 Virtual Desktop 22

Horizon TrueSSO Support & Requirements Horizon 7+ or Horizon Cloud (latest version) Horizon Enrollment Server Recent Horizon Client (v4+) Identity Manager On-Premises or SaaS (v2.9+) Joined to Active Directory Domain Enterprise Microsoft CA Custom CA templates for short lived certs 23

Horizon Client SP Init Flow Access Policy Support in Horizon VMworld 2017 Content: Not for publication

Access Policy support for Horizon Applications Previously, SP Init launch supported only for web applications like socialcast, Salesforce, Office 365, Slack, etc. User experience was confusing or launch resulted in errors from Horizon client, file type association or other shortcuts Horizon Administrator enables Workspace ONE mode with server hostname Supported use cases: Users launch Horizon client and click on login (a.k.a SP-Init workflow) Handling file type association (FTA) by Horizon View client Application Shortcut or URL launch 25

Limitations/Known Issues Supported as of Horizon 7.2 Currently supporting only browser based flows, Workspace ONE native client flow is not supported For any change in Workspace ONE mode configuration, customer needs to remove the connection server from the server selector & to cleat the cache to see the change 26

Gotchas!

Horizon Metadata Expired https://kb.vmware.com/kb/2144331 Change metadata expire period to 4-5 days Make sure VMware Identity Manager syncs Horizon Entitlements once per day Also mentioned in manual: http://pubs.vmware.com/horizon-7- view/index.jsp?topic=%2fcom.vmware.horizon-view.administration.doc%2fguid-3e170c23-097f- 46D0-82BD-7CACFF04FC9A.html 28

Integrating Horizon Cloud Pod Multiple Horizon instances with Workspace ONE

Horizon Cloud Pod Architecture Layout and Sync Core tcserver IDM VA API SUSE Linux Connector Sync Traffic Connector vpostgres Connector Sync Traffic London Site / POD 1 Paris Site / POD 2 Global Entitlement Home Site AD Groups Global Finance Home Site London Paris Cloud Pod Federation 31

Horizon Cloud Pod Architecture Local Configurations 32

Horizon Cloud Pod Architecture Global Configurations 33

Agenda 1 What is Workspace ONE? 2 Setting up Horizon with Workspace ONE 3 User Experience and Demo 36

DEMO Horizon TrueSSO and Workspace ONE

Questions!

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback