Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Similar documents
Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

ARCHITECTURAL OVERVIEW REVISED 6 NOVEMBER 2018

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

REVISED 6 NOVEMBER 2018 COMPONENT DESIGN: VMWARE IDENTITY MANAGER ARCHITECTURE

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Setting Up Resources in VMware Identity Manager. VMware Identity Manager 2.8

Setting Up Resources in VMware Identity Manager

Speaker Introduction Who Mate Barany, VMware Manuel Mazzolin, VMware Peter Schmitt, Deutsche Bahn Systel Why VMworld 2017 Understanding the modern sec

VMWARE S DESKTOP STRATEGY

Guide to Deploying VMware Workspace ONE. VMware Identity Manager VMware AirWatch 9.1

Setting Up Resources in VMware Identity Manager 3.1 (On Premises) Modified JUL 2018 VMware Identity Manager 3.1

Deploying VMware Identity Manager in the DMZ. SEPT 2018 VMware Identity Manager 3.3

Guide to Deploying VMware Workspace ONE with VMware Identity Manager. SEP 2018 VMware Workspace ONE

Guide to Deploying VMware Workspace ONE. DEC 2017 VMware AirWatch 9.2 VMware Identity Manager 3.1

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Setting Up Resources in VMware Identity Manager (On Premises) Modified on 30 AUG 2017 VMware AirWatch 9.1.1

REVIEWERS GUIDE NOVEMBER 2017 REVIEWER S GUIDE FOR CLOUD-BASED VMWARE WORKSPACE ONE: MOBILE SINGLE SIGN-ON. VMware Workspace ONE

VMWARE HORIZON CLOUD WITH VMWARE IDENTITY MANAGER QUICK START GUIDE WHITE PAPER MARCH 2018

VMware Workspace ONE Quick Configuration Guide. VMware AirWatch 9.1

Table of Contents HOL VWS

Integrating VMware Workspace ONE with Okta. VMware Workspace ONE

Deploying VMware Identity Manager in the DMZ. JULY 2018 VMware Identity Manager 3.2

Citrix Workspace. Lausanne Laurent Strauss Christophe Beaugrand

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

VMWARE HORIZON 7. End-User Computing Today. Horizon 7: Delivering Desktops and Applications as a Service

Integrating AirWatch and VMware Identity Manager

Deploying VMware Workspace ONE Intelligent Hub. October 2018 VMware Workspace ONE

VMware Identity Manager Cloud Deployment. DEC 2017 VMware AirWatch 9.2 VMware Identity Manager

VMware Identity Manager Cloud Deployment. Modified on 01 OCT 2017 VMware Identity Manager

Installing and Configuring VMware Identity Manager Connector (Windows) OCT 2018 VMware Identity Manager VMware Identity Manager 3.

Setting Up Resources in VMware Identity Manager (SaaS) Modified 15 SEP 2017 VMware Identity Manager

VMware EUC a competitor to Citrix? 2010 VMware Inc. All rights reserved

REVISED 4 JANUARY 2018 VMWARE WORKSPACE ONE REFERENCE ARCHITECTURE FOR SAAS DEPLOYMENTS

Disclaimer This presentation may contain product features that are currently under development This overview of new technology represents no commitmen

Audience Profile Experienced system administrators and system integrators responsible for implementing desktop solutions

VMware Identity Manager Administration

VMware Identity Manager Administration. MAY 2018 VMware Identity Manager 3.2

VMware Horizon Suite:

NL VMUG UserCon 16 March 2017

Configuring Single Sign-on from the VMware Identity Manager Service to Marketo

Inside Symantec O 3. Sergi Isasi. Senior Manager, Product Management. SR B30 - Inside Symantec O3 1

Horizon Workspace Administrator's Guide

Distribuire risorse desktop

Android Mobile Single Sign-On to VMware Workspace ONE. SEP 2018 VMware Workspace ONE VMware Identity Manager VMware Identity Manager 3.

Delivering Desktop Resources to Any Device As a Service

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

REVISED 6 NOVEMBER 2018 COMPONENT DESIGN: UNIFIED ACCESS GATEWAY ARCHITECTURE

Today s workforce is Mobile. Cloud and SaaSbased. are being deployed and used faster than ever. Most applications are Web-based apps

INTEGRATING OKTA: VMWARE WORKSPACE ONE OPERATIONAL TUTORIAL VMware Workspace ONE

Microsoft Windows Server 2008 R2 Remote Desktop Services Session Virtualization and VDI Microsoft RemoteFX

Integrating VMware Horizon Workspace and VMware Horizon View TECHNICAL WHITE PAPER

AppController :21:56 UTC Citrix Systems, Inc. All rights reserved. Terms of Use Trademarks Privacy Statement

SAP Security in a Hybrid World. Kiran Kola

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

VMware AirWatch - Workspace ONE, Single Sign-on and VMware Identity Manager

Service Description VMware Workspace ONE

Maximize your investment in Microsoft Office 365 with Citrix Workspace

WHITE PAPER AIRWATCH SUPPORT FOR OFFICE 365

VMware Enterprise Systems Connector Installation and Configuration. JULY 2018 VMware Identity Manager 3.2 VMware Identity Manager VMware AirWatch 9.

Architecting the Digital Workspace with VMware Horizon 7

Transform to Your Cloud

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

PRINTED 13 APRIL 2018 NETWORK PORTS IN VMWARE HORIZON 7

Extend your datacenter with the power of Citrix Open Cloud

Deploying Virtual Apps and Desktops with Citrix Provisioning using Oracle Cloud Infrastructure

MANAGING ANDROID DEVICES: VMWARE WORKSPACE ONE OPERATIONAL TUTORIAL VMware Workspace ONE

VMware AirWatch Cloud Connector Guide ACC Installation and Integration

VMware Workspace ONE UEM VMware AirWatch Cloud Connector

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Citrix Workspace Cloud

Installing and Configuring VMware Identity Manager. Modified on 14 DEC 2017 VMware Identity Manager 2.9.1

VMware Enterprise Systems Connector Installation and Configuration. Modified 29 SEP 2017 VMware AirWatch VMware Identity Manager 2.9.

VMware Horizon. VMware Horizon 7. Q. What are the key features of Horizon 7? Q. What is VMware Horizon?

VMware Identity Manager Administration

Design and deliver cloud-based apps and data for flexible, on-demand IT

CONFIGURING BASIC MACOS MANAGEMENT: VMWARE WORKSPACE ONE OPERATIONAL TUTORIAL VMware Workspace ONE

VMware Enterprise Systems Connector Installation and Configuration

VMware AirWatch: Directory and Certificate Authority

VMware Horizon 6. Horizon 6 FAQ. Q VMware Horizon. VMware Horizon / / Horizon. Windows

DEPLOYMENT GUIDE. Load Balancing VMware Unified Access Gateway

XenApp, XenDesktop and XenMobile Integration

Microsoft Azure Course Content

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Installing and Configuring VMware Identity Manager

CONFIGURING AD FS AS A THIRD-PARTY IDP IN VMWARE IDENTITY MANAGER: VMWARE WORKSPACE ONE OPERATIONAL TUTORIAL VMware Workspace ONE

Integration Guide. SafeNet Authentication Client. Using SAC CBA for VMware Horizon 6 Client

Dell DVS. Enabling user productivity and efficiency in the Virtual Era. Dennis Larsen & Henrik Christensen. End User Computing

HCX SERVER PRODUCT BRIEF & TECHNICAL FEATURES SUMMARY

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Citrix Education Learning Journey

Redefining Hybrid Cloud Management with vcenter Hybrid Linked Mode

VMware Identity Manager Connector Installation and Configuration (Legacy Mode)

XenApp 7.x on Oracle Cloud Infrastructure

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

TECHNICAL WHITE PAPER DECEMBER 2017 VMWARE HORIZON CLOUD SERVICE ON MICROSOFT AZURE SECURITY CONSIDERATIONS. White Paper

Citrix is the Cloud Computing company that Enables Mobile Workstyles

Overview. Premium Data Sheet. DigitalPersona. DigitalPersona s Composite Authentication transforms the way IT

Transcription:

ADV1591BU Delivering Virtual Desktops and Apps via the Digital Workspace with Workspace ONE and VMware Horizon VMworld 2017 Content: Not for publication Peter Bjork @thepeb & Matt Coppinger @mcopping #VMworld #ADV1591BU

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitment from VMware to deliver these features in any generally available product. Features are subject to change, and must not be included in contracts, purchase orders, or sales agreements of any kind. Technical feasibility and market demand will affect final delivery. Pricing and packaging for any new technologies or features discussed or presented have not been determined. CONFIDENTIAL 2

Agenda 1 What is Workspace ONE? 2 Setting up Horizon with Workspace ONE 3 User Experience and Demo #ADV1591BU CONFIDENTIAL 3

Agenda 1 What is Workspace ONE? 2 Setting up Horizon with Workspace ONE 3 User Experience and Demo #ADV1591BU CONFIDENTIAL 4

IT/it Used to Be Simple... #ADV1591BU CONFIDENTIAL 5

Bridging Two Worlds Client-Server Era Mobile-Cloud Era #ADV1591BU CONFIDENTIAL 6

Bridging Two Worlds Client-Server Era Domain joined Network based security Managing devices OPEX heavy 1:150 ratio Slow Migration Projects Mobile-Cloud Era #ADV1591BU CONFIDENTIAL 7

Bridging Two Worlds Client-Server Era Domain joined Network based security Managing devices OPEX heavy 1:150 ratio Slow Migration Projects Mobile-Cloud Era Enrollment Identity based security Managing policies Massive scale 1:15 000 ratio Fast Continuous Delivery #ADV1591BU CONFIDENTIAL 8

Applications in the Enterprise Universal Windows Apps #ADV1591BU CONFIDENTIAL 9

Bridging Two Worlds Client-Server Era Mobile-Cloud Era #ADV1591BU CONFIDENTIAL 10

Bridging Two Worlds Client-Server Era Workspace One AirWatch ThinApp Flex Horizon BLAST Unified Access Horizon PCoIP Mirage VMware Identity Gateway App Volumes Manager UEM Horizon Cloud Mobile-Cloud Era #ADV1591BU CONFIDENTIAL 11

VMware Empowers the Digital Workspace You can t transform business without a great user experience VMworld 2017 You don t need to compromise security to get there Content: Not for publication #ADV1591BU CONFIDENTIAL 12

Simple App Delivery through a Unified Catalog Web-based Mobile app Any app to any device #ADV1591BU CONFIDENTIAL 13

Agenda 1 What is Workspace ONE? 2 Setting up Horizon with Workspace ONE 3 User Experience and Demo #ADV1591BU CONFIDENTIAL 14

Horizon Deployment Options ACTIVE DIRECTORY Horizon Cloud with Hosted Infrastructure MOBILE USERS USER APP DATA CLOUD PROVIDER OPEX model of utility based pricing Scalability on demand Minimal internal expertise required Remote locations where building data center capacity is impossible SECURE VPN CUSTOMER IT ENVIRONMENT REMOTE USERS SECURE VPN CORP USER DEVICES Horizon Cloud with On-premises Infrastructure VIRTUAL DESKTOPS & APPS ON HYPER-CONVERGED INFRASTRUCTURE Hybrid OPEX/CAPEX model Management infrastructure in the cloud On-premises virtual desktops & apps on hyper-converged infrastructure Minimal internal expertise required and easily scalable G CLOUD PROVIDER CONTROL PLANE ACCESS POINTS ACTIVE DIRECTORY LOAD BALANCERS CAPEX Model CONNECTION BROKERS CUSTOMER IT ENVIRONMENT On Premises (Horizon 7) Greater flexibility in desktop options Scalable to customer requirements Feature rich management MANAGEMENT SERVERS SANSTORAGE ACTIVE DIRECTORY COMPUTE SERVERS RUNNING VIRTUAL DESKTOPS #ADV1591BU CONFIDENTIAL 15

Simple Access to Apps & Desktops Access to Horizon 7 and Horizon Cloud desktops from Workspace ONE Full support for Horizon 5.x 6.x 7.x Virtual Desktops Published Applications Horizon Cloud Pod Architecture Single Sign On & True SSO Support for Horizon Air / Cloud Horizon Cloud Hosted Horizon Cloud On-premises SSO to virtual desktops and apps Support for Citrix XenApp 5/6/7.x XenDesktop 7.x #ADV1591BU CONFIDENTIAL 16

Horizon Entitlement Sync and Access RDS Farm Horizon 7.x Desktops Horizon Connection Server Get Resources, Entitlements VMworld 2017 Content: Not for Connector VMware Identity Manager publication Horizon Client #ADV1591BU CONFIDENTIAL 17

Horizon 7 Integration #ADV1591BU CONFIDENTIAL 18

Network Ranges #ADV1591BU CONFIDENTIAL 19

Network Ranges #ADV1591BU CONFIDENTIAL 20

Network Ranges #ADV1591BU CONFIDENTIAL 21

End to End SSO with TrueSSO Streamlined single sign on to Horizon via Workspace ONE

Horizon TrueSSO VMworld 2017 Users authenticate to VMware Identity Manager using a variety of credential options Once authenticated, users select Horizon desktop or hosted application No need to enter AD credentials or SmartCard Content: Not for publication Uses SAML to connect the Identity Provider s (IdP) authentication with user s UPN for access to AD credentials True SSO generates unique, short-lived certificate to manage Windows logon process #ADV1591BU CONFIDENTIAL 23

Horizon TrueSSO Benefits VMworld 2017 Separates Authentication (validating a user s identity) from Access (user can use a Windows desktop or application Enhanced security. User credentials are secured by digital certificate, no passwords are vaulted or transferred within the datacenter Supports a wide range of authentication methods enterprises can select or change authentication protocols with limited impact to the infrastructure Content: Not for publication #ADV1591BU CONFIDENTIAL 24

Horizon TrueSSO Workflow 1 VMware Identity Manager VMworld 2017 Content: Not for 2 3 VMware Enrollment Service Horizon Broker 4 5 Microsoft Certificate Authority publication AD 6 Horizon Client 7 Virtual Desktop #ADV1591BU CONFIDENTIAL 25

Horizon TrueSSO Support & Requirements Horizon 7 or Horizon Cloud (latest version) Horizon Enrollment Server Latest Horizon Client (v4) Identity Manager On-Premises or SaaS (latest version) Joined to Active Directory Domain Enterprise Microsoft CA Custom CA templates for short lived certs #ADV1591BU CONFIDENTIAL 26

Horizon Client SP Init Flow Access Policy Support in Horizon VMworld 2017 Content: Not for publication

Horizon 7 Integrated With Workspace ONE Workspace ONE access policies enforced through the Horizon Client 28

Workspace ONE Configuration in Horizon 7.2 1 2 3 1. Require external authentication (IDM) 2. Enables redirection to WS1 hostname 3. Force access policy compliance 29

Access Policy Control in Identity Manager 30

Gotchas!

Horizon Metadata Expired https://kb.vmware.com/kb/2144331 Change metadata expire period to 4-5 days Make sure VMware Identity Manager syncs Horizon entitlements once per day Also mentioned in manual http://pubs.vmware.com/horizon-7- view/topic/com.vmware.horizon- view.administration.doc/guid-3e170c23-097f-46d0-82bd-7cacff04fc9a.html VMworld 2017 Content: Not for publication 34

Horizon Sync require a Worker If deploying many separate connectors in a large environment. Make sure you create a Workspace One idp Add connector to above worker process.. 35

Integrating Horizon Cloud Pod Multiple Horizon instances with Workspace ONE

Horizon Cloud Pod Architecture Layout and Sync Core tcserver IDM VA API SUSE Linux Connector Sync Traffic Connector vpostgres Connector Sync Traffic London Site / POD 1 Paris Site / POD 2 Global Entitlement Home Site AD Groups Global Finance Home Site London Paris Cloud Pod Federation #ADV1591BU CONFIDENTIAL 37

Horizon Cloud Pod Architecture Local Configurations #ADV1591BU CONFIDENTIAL 38

Horizon Cloud Pod Architecture Global Configurations #ADV1591BU CONFIDENTIAL 39

Integrating Horizon Cloud Setting up access to Horizon Cloud with Workspace ONE

Horizon Cloud Hosted Desktops & Apps Integration Requires On-Premises IDM Connector Requires IDM Connector be joined to Active Directory Domain Integrated using sync between Identity Manager & Horizon Cloud Enable Horizon Cloud Desktops and Applications in IDM administration console Create Horizon Cloud Federation Artifact in IDM Configure SAML Authentication in Horizon Cloud From IDM initiate Sync with Horizon Cloud Desktops and Hosted applications are part of the same sync

Horizon Cloud Hosted Desktops & Apps Integration #ADV1591BU CONFIDENTIAL 42

Agenda 1 What is Workspace ONE? 2 Setting up Horizon with Workspace ONE 3 User Experience and Demo #ADV1591BU CONFIDENTIAL 43

DEMO Horizon TrueSSO and Workspace ONE

Questions!

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback