INUVIKA OPEN VIRTUAL DESKTOP FOUNDATION SERVER



Similar documents
How To Understand The Architecture Of An Ulteo Virtual Desktop Server Farm

INUVIKA OPEN VIRTUAL DESKTOP FOUNDATION SERVER

INUVIKA OPEN VIRTUAL DESKTOP FOUNDATION SERVER

MEGA Web Application Architecture Overview MEGA 2009 SP4

Introduction to Mobile Access Gateway Installation

System requirements for A+

Web Conferencing Version 8.3 Troubleshooting Guide

Network Configuration Settings

INUVIKA OVD VIRTUAL DESKTOP ENTERPRISE

Ulteo Open Virtual Desktop - Protocol Description


Sage Grant Management System Requirements

Citrix Access on SonicWALL SSL VPN

Dell SonicWALL SRA 7.5 Citrix Access

How To Use Tsplashbox On A Pc Or Mac Or Mac (For A Pc) With A Windows 7 Computer (For Mac) Or Mac) With Tsplatro (For Pc) Or Ipad (For Windows) With An

Ignify ecommerce. Item Requirements Notes

INUVIKA OVD INSTALLING INUVIKA OVD ON UBUNTU (TRUSTY TAHR)

Delphi+ System Requirements

Remote Application Server Version 14. Last updated:

2X SecureRemoteDesktop. Version 1.1

Grant Management. System Requirements

INUVIKA TECHNICAL GUIDE

Abila Grant Management. System Requirements

Media Exchange really puts the power in the hands of our creative users, enabling them to collaborate globally regardless of location and file size.

Remote Application Server Version 14. Last updated:

System Requirements. SuccessMaker 5

Remote Access Clients for Windows

Media Server Installation & Administration Guide

NetSpective Global Proxy Configuration Guide

Blackbaud Hosting Services

IBM Cloud Manager with OpenStack

Live Guide System Architecture and Security TECHNICAL ARTICLE

Server Installation Manual 4.4.1


Remote Desktop Gateway. Accessing a Campus Managed Device (Windows Only) from home.

Content Distribution Management

Customer Site Requirements for incontact Workforce Optimization

Phire Architect Hardware and Software Requirements

inforouter V8.0 Server & Client Requirements

Sharp Remote Device Manager (SRDM) Server Software Setup Guide

Expertcity GoToMyPC and GraphOn GO-Global XP Enterprise Edition

Minimum System Requirements

REQUIREMENTS LIVEBOX.

Requirements Collax Security Gateway Collax Business Server or Collax Platform Server including Collax SSL VPN module

How To Connect To Bloomerg.Com With A Network Card From A Powerline To A Powerpoint Terminal On A Microsoft Powerbook (Powerline) On A Blackberry Or Ipnet (Powerbook) On An Ipnet Box On

White Paper. Anywhere, Any Device File Access with IT in Control. Enterprise File Serving 2.0

msuite5 & mdesign Installation Prerequisites

Proof of Concept Guide

BlackBerry Enterprise Service 10. Version: Installation Guide

Brainlab Node TM Technical Specifications

NEFSIS DEDICATED SERVER

SMART Bridgit software

RemoteApp Publishing on AWS

Securing access to Citrix applications using Citrix Secure Gateway and SafeWord. PremierAccess. App Note. December 2001

Requirements on terminals and network Telia Secure Remote User, TSRU (version 7.1 R4)

Technical Requirements

Introduction to the EIS Guide

Storage Sync for Hyper-V. Installation Guide for Microsoft Hyper-V

AT&T Connect System Requirements for End Users v9.5. March 2013

Table of Contents. Chapter 1: Installing Endpoint Application Control. Chapter 2: Getting Support. Index

AT&T CLOUD SERVICES. AT&T Synaptic Compute as a Service SM : How to Get Started. Version 2.0 January 2012

RSS Cloud Solution COMMON QUESTIONS

NetLeverage UK ThinPoint Solution Overview Version 2 Copyright 2012 NetLeverage UK

Configuration Guide. Installation and. BlackBerry Enterprise Server for Microsoft Exchange. Version: 5.0 Service Pack: 4

BMC Client Management - Technical Specifications. Version 12.0

Mediasite EX server deployment guide

REQUIREMENTS AND INSTALLATION OF THE NEFSIS DEDICATED SERVER

A Guide to New Features in Propalms OneGate 4.0

Dualog Connection Suite Hardware and Software Requirements

Java Secure Application Manager

Citrix MetaFrame Presentation Server 3.0 and Microsoft Windows Server 2003 Value Add Feature Guide

Enterprise Solution for Remote Desktop Services System Administration Server Management Server Management (Continued)...

Server Installation Procedure - Load Balanced Environment

Web Supervisor/Agent. System Requirements & Troubleshooting Guide. 989 Old Eagle School Road Wayne, PA (610)

ThinPoint Quick Start Guide

1.0 Hardware Requirements:

Acronis and Acronis Secure Zone are registered trademarks of Acronis International GmbH.

Product Overview and Functional Specification

The SSL device also supports the 64-bit Internet Explorer with new ActiveX loaders for Assessment, Abolishment, and the Access Client.

Steelcape Product Overview and Functional Description

SNOW LICENSE MANAGER (7.X)... 3

Table 1 summarizes the requirements for desktop computers running the Participant Application and the myat&t utility.

OnCommand Performance Manager 1.1

Kaseya IT Automation Framework

Gladinet Cloud Enterprise

MaaS360 Mobile Enterprise Gateway

Implementing the Application Control Engine Service Module

Hardware and Software Requirements. Release 7.5.x PowerSchool Student Information System

HOW TO CONFIGURE PASS-THRU PROXY FOR ORACLE APPLICATIONS

How To Configure SSL VPN in Cyberoam

Configuration Guide. BES12 Cloud

Configuring Windows Server Clusters

Novell Access Manager SSL Virtual Private Network

VMware Virtual Desktop Infrastructure (VDI) - The Best Strategy for Managing Desktop Environments Mike Coleman, VMware (mcoleman@vmware.

Rally Installation Guide

insync Installation Guide

Enterprise Manager. Version 6.2. Installation Guide

Compatibility and Support Information Nasuni Corporation Natick, MA


Transcription:

INUVIKA OPEN VIRTUAL DESKTOP FOUNDATION SERVER ARCHITECTURE OVERVIEW AND SYSTEM REQUIREMENTS Mathieu SCHIRES Version: 1.0.0 Published March 5, 2015 http://www.inuvika.com

Contents 1 Introduction 3 2 Architecture Overview 4 2.1 Servers Roles........................................ 4 2.1.1 OVD Session Manager (OSM)........................... 4 2.1.2 OVD Application Server (OAS)........................... 4 2.1.3 OVD Web Access (OWA).............................. 4 2.1.4 OVD Web Application Connect (OWAC)..................... 4 2.1.5 OVD File Server (OFS)............................... 5 2.1.6 Inuvika Enterprise Secure Gateway (ESG).................... 5 2.2 Overview ports and protocols............................... 5 2.2.1 Hyper Text Transfer Protocol (HTTP)....................... 5 2.2.2 Remote Desktop Protocol (RDP)......................... 6 2.2.3 Secure Socket Layer (SSL)............................. 6 2.2.4 Server Communication.............................. 6 2.2.4.1 Security.................................. 6 2.2.4.2 HTTP Return Codes........................... 6 2.2.5 Client Session.................................... 7 2.2.5.1 Establing a Simple User Session.................... 7 2.3 Components required vs non-required......................... 8 3 System Requirements 9 3.1 OVD Session Manager (OSM)............................... 9 3.2 OVD Application Server (OAS)............................... 9 3.2.1 OVD Application Server on Windows...................... 9 3.2.2 OVD Application Server on Linux......................... 10 3.3 OVD Web Access (OWA).................................. 10 3.4 OVD Web Application Connect (OWAC)......................... 10 3.5 OVD File Server (OFS).................................... 11 3.6 Inuvika Enterprise Secure Gateway (ESG)........................ 11 3.7 Inuvika Enterprise Desktop Client............................ 11 3.8 OWA - Browser requirements............................... 12 3.9 Network Bandwidth Requirements............................ 12 3.10 Firewall and ports...................................... 12 Page 1

List of Tables 1 OVD Components...................................... 9 2 Minimum Browser Requirements............................ 12 3 Supported Java versions.................................. 12 Page 2

1. INTRODUCTION The purpose of this documentation is to provide a high-level description of the architecture typically used in an Inuvika Open Virtual Desktop (OVD) server deployment and the system requirements. OVD is a delivery platform that provides on-demand access to private and public cloud hosted virtual desktops and applications enabling organizations to integrate and seamlessly deliver them as a secure service to users. OVD supports Windows Remote Desktop Services and Linux hosted desktops and application sessions as well as SaaS applications to clients based on Windows, Linux, MacOS, Android and ios platforms as well as web browser clients. Page 3

2. ARCHITECTURE OVERVIEW 2.1 SERVERS ROLES A typical Inuvika OVD installation uses several servers with different roles. Some of the server roles are required and others are optional. On smaller deployments, several roles can be configured to run on the same physical server 2.1.1 OVD SESSION MANAGER (OSM) This server is the central piece of an Inuvika OVD server farm and is always required. It manages the session establishment from a client, hosts the administration console and provides centralized management of all the OVD server resources. The OSM should be installed prior to any other server. Inuvika provides various Linux packages for installing the OSM on a Linux server. Inuvika does not provide a Windows installer version of OSM. 2.1.2 OVD APPLICATION SERVER (OAS) Inuvika OVD is an application and desktop delivery solution. The OAS in the OVD solution is the server that hosts the end user applications and is accessed from the client using an enhanced Remote Display Protocol. An OVD farm may consist of multiple OAS (Windows and Linux). The user load can be loadbalanced among the available application servers to provide better performance. For the OVD Foundation Server only one OAS is allowed. The OAS can be either a Linux system or a Windows system depending on the type of applications or desktop you want to deliver. Of course, you can mix Linux and Windows machines in an Inuvika OVD farm to deliver applications seamlessly from different application servers. OVD Enterprise is required for this capability 2.1.3 OVD WEB ACCESS (OWA) This OWA server is responsible for managing browser-based client sessions. In Inuvika OVD, there are 2 types of browser-based sessions. The first type of browser session uses a Java applet within the browser to communicate with OWA. In this case, OWA will install the Java applet if it is not already available in the browser. The second type of browser session requires an HTML5 compliant browser on the client machine but no software will be installed on the client machine. In both cases, the OVD session is tunneled over an SSL session. In addition, the OWA provides capabilities through a JavaScript API to integrate OVD with other web based applications. Users may decide to use one of the Inuvika Enterprise Desktop Client to create an OVD session instead of using a web browser. In that case, OWA would not be required. 2.1.4 OVD WEB APPLICATION CONNECT (OWAC) An OVD server may be configured to support Web Application Integration. This could be installed as a standalone server or could be configured on an existing server width different roles. The Web Application Integration provides seamless integration of Web Applications into the OVD environment and a Single Sign On capability This is an optional role and not required if you don t need any of Web Application Integration. Page 4

2.1.5 OVD FILE SERVER (OFS) Within Inuvika OVD, the OFS provides a centralized file management system that enables users to access the same files independently of which application server is used to provide the application. OFS provides a network file system that the OAS Servers are able to access when users are running sessions. It is used to provide access to both user profiles and data folders and files. The OFS is available for Linux based servers only. In a small OVD server farm, the OFS may reside on the same physical machine as the OAS. In larger installations, the OFS would typically be installed on dedicated hardware. 2.1.6 INUVIKA ENTERPRISE SECURE GATEWAY (ESG) Inuvika OVD uses several ports during the client session, mainly HTTPS (443) and RDP (3389). But in some cases, for example when the user is remote, a firewall would typically be configured to block access to the RDP port. The ESG also can be used to unify access to multiple OVD Application Servers by providing a single point of access to the clients. The ESG is a dedicated server The ESG tunnels all the OVD connections, between the clients and itself, over an HTTPS session. So from anywhere, users that have access to HTTPS (443), will also be able to start an OVD session. 2.2 OVERVIEW PORTS AND PROTOCOLS The following diagram presents an overview of ports and protocols used in Inuvika OVD. Open Virtual Desktop Anywhere Security Zone Back Office LAN CIFS TCP445 OFS OAS i-rdp - TCP3389 i-rdp - TCP3389 HTTPS - TCP443 Any Device ESG HTTPS - TCP443 WebDAV TCP1113 i-rdp - TCP3389* OVD TCP1111 HTTPS - TCP443 OVD TCP1112 Any Device OWA HTTPS - TCP443 OSM ESG: Enterprise Secure Gateway OSM: OVD Session Manager OFS: OVD File Server OAS: OVD Applications Server OWA: OVD Web Access * When using HTML5 access 2.2.1 HYPER TEXT TRANSFER PROTOCOL (HTTP) The base communication protocol used in Inuvika OVD for session establishment and management is HTTP over SSL. This protocol runs over TCP port 443. Inuvika OVD use also HTTP for communication between servers: OVD Session Manager (OSM) to OVD Application Server (OAS) and vice versa. For this usage, the TCP ports 1111 and 1112 (non standard ports) are used. Several components of Inuvika OVD such as the Administration Console and OVD Web Page 5

Access are purely web-based and use HTTP and the components are accessed via a web browser. HTTP on Wikipedia 2.2.2 REMOTE DESKTOP PROTOCOL (RDP) RDP is the remote display protocol used by Microsoft Corp. for their Terminal Services and Remote Desktop Services software. RDP is used by Inuvika Open Virtual Desktop to display desktop and applications on the client machine. RDP uses TCP port 3389. RDP on Wikipedia 2.2.3 SECURE SOCKET LAYER (SSL) SSL is an cryptographic layer protocol that provide encryption between server and client. SSL is used by Inuvika OVD to tunnel RDP. SSL on Wikipedia 2.2.4 SERVER COMMUNICATION Servers communicate by using HTTP based Web Services. The OVD Session Manager listens on TCP port 1111 and Application Servers use port 1112. The OSM identifies an OAS using its Fully Qualified Domain Name (FQDN). OAS Servers only respond to the OSM whose address is stored in their configuration file. 2.2.4.1 SECURITY A server is authenticated using the DNS resolution system. When an OAS sends its status, it sends an extra argument called the fqdn. The OSM performs 2 authentication tests and 1 authorization test. FQDN resolution: the OSM resolves the FQDN to get an IP address and tests if it matches the remote server IP. The authentication depends on that result being correct. reverse resolution: resolves the server IP address and tests if it matches the FQDN argument. The authentication depends on that result being correct. This test can be disabled in the administration console using the Disable FQDN checkparameter authorization: the OSM will test whether the FQDN matches one of the Authorized FQDN parameters defined in the administration console. 2.2.4.2 HTTP RETURN CODES The OVD Web Services use the standard HTTP return codes to know if the request succeeded. 200 OK : request succeeded 400 Bad Request : request argument not valid Page 6

401 Unauthorized : From OSM to OAS: OAS detects if the remote address does not match its configured PSM. From OAS to OSM: OAS is not registered yet or failed authentication. 500 Internal Server Error : The request failed because of an error in the system. 2.2.5 CLIENT SESSION 2.2.5.1 ESTABLING A SIMPLE USER SESSION The following schema describe the steps for the establishment of an Inuvika OVD user session. In this example, only one OAS is used, the session does not use OVD File Server (internal or external) and the client connects directly to the OSM without using a Gateway. Page 7

2.3 COMPONENTS REQUIRED VS NON-REQUIRED The table above presents the required components to build a simple OVD environment. Page 8

Component name Required Optional Details OSM Yes - - OAS Yes - - OWA - Yes This is not required if using Inuvika Enterprise Desktop Clients. OWAC - Yes If Web Application Integration is needed OFS Yes - - ESG - Yes If external access to OVD is needed Table 1: OVD Components 3. SYSTEM REQUIREMENTS This section provides all the system requirements for each OVD server role and for a client machine to run an Inuvika Enterprise Desktop Client. It also lists the browsers that are supported and the supported Java versions. 3.1 OVD SESSION MANAGER (OSM) All of the following Operating Systems are supported: RHEL 6.x / Centos 6.x 64 bits RHEL 7.x / Centos 7.x 64 bits Ubuntu 14.04 server (LTS version only) 64 bits Minimum hardware configuration: CPU: 1 Core (2 Cores recommended) Memory: 1 GB (2 GB recommended) Storage: 20 GB Network: 1 GB NIC (2 for failover) 3.2 OVD APPLICATION SERVER (OAS) 3.2.1 OVD APPLICATION SERVER ON WINDOWS All of the following Operating Systems are supported: Windows 2003 R2 SP2 32/64bit with Terminal Services in Application Server mode Windows 2008 R2 SP1 with Remote Desktop Services Windows 2012 / 2012 R2 with Remote Desktop Services Minimum hardware configuration: Page 9

CPU: 2 cores (4+ cores recommended) Memory: 2 GB (8+ GB recommended) Storage: 50+ GB. High speed disks with RAID-1 (15krpm, SSDs or SAN disks). Network: 1 GB NIC 3.2.2 OVD APPLICATION SERVER ON LINUX All of the following Operating Systems are supported: RHEL 6.x / Centos 6.x 64 bits RHEL 7.x / Centos 7.x 64 bits Ubuntu 14.04 server (LTS version only) 64 bits Minimum hardware configuration: CPU: 2 cores (4+ cores recommended) Memory: 2 GB (8+ GB recommended) Storage: 50+ GB. High speed disks with RAID-1 (15krpm, SSDs or SAN disks). Network: 1 GB NIC 3.3 OVD WEB ACCESS (OWA) All of the following Operating Systems are supported: RHEL 6.x / Centos 6.x 64 bits RHEL 7.x / Centos 7.x 64 bits Ubuntu 14.04 server (LTS version only) 64 bits Minimum hardware configuration: CPU: 1 core (2 cores recommended) Memory: 1 GB(2 GB recommended) Storage: 20 GB Network: 1 GB NIC (2 for failover) 3.4 OVD WEB APPLICATION CONNECT (OWAC) All of the following Operating Systems are supported: RHEL 6.x / Centos 6.x 64 bits RHEL 7.x / Centos 7.x 64 bits Ubuntu 14.04 server (LTS version only) 64 bits Minimum hardware configuration: Page 10

CPU: 1 core (2 cores recommended) Memory: 1 GB (2 GB recommended) Storage: 20 GB Network: 1 GB NIC (2 for failover) 3.5 OVD FILE SERVER (OFS) All of the following Operating Systems are supported: RHEL 6.x / Centos 6.x 64 bits RHEL 7.x / Centos 7.x 64 bits Ubuntu 14.04 server (LTS version only) 64 bits Minimum hardware configuration: CPU: 2 cores (4 cores recommended) Memory: 2 GB (4 GB recommended) Storage: 100+ GB. High speed disks with RAID-1 (15krpm, SSDs or SAN disks). Network: 1 GB NIC 3.6 INUVIKA ENTERPRISE SECURE GATEWAY (ESG) All of the following Operating Systems are supported: RHEL 6.x / Centos 6.x 64 bits RHEL 7.x / Centos 7.x 64 bits Ubuntu 14.04 server (LTS version only) 64 bits Minimum hardware configuration: CPU: 2 cores (4 cores recommended) Memory: 2 GB(4+ GB recommended) Storage: 20+ GB. Network: 1 GB NIC 3.7 INUVIKA ENTERPRISE DESKTOP CLIENT EDC clients are provided for Windows, Linux or Mac platforms. The client is a standalone application which can be used instead of browser based access to provide a tighter integration with the platform on which it is installed through seamless application and local desktop integration. Operating System: Linux Desktop Page 11

Apple OSX 10.09 and 10.10 (java virtual machine must be installed in advance) Windows XP, 7, 8.0 and 8.1 Minimal hardware configuration: 1 CPU Core 1 GB RAM Disk space: 100 MB 3.8 OWA - BROWSER REQUIREMENTS Minimum Browser Requirements: The table below describes the minimum browser Requirements for the Operating Systems supported Operating Internet System Explorer Firefox Chrome Safari Windows v11 and higher v16 and higher v24 and higher - Apple - v16 and higher v24 and higher v7 and higher Linux - v16 and higher v24 and higher - Table 2: Minimum Browser Requirements Supported Java versions: OWA supports Java with the 32bits and 64bits versions. Operating System Java SE 7.X Java SE 8.X OpenJDK 7 and later Windows Apple Linux Table 3: Supported Java versions 3.9 NETWORK BANDWIDTH REQUIREMENTS The Network bandwidth required depends on the usage characteristics and the applications being served. Applications such as flash animation, streaming videos or 3D usage consume a lot of bandwidth. The screen resolution and color depth are also a factor in determing the bandwidth consumption. Inuvika recommends a minimum of 128kbps per user for planning purposes. A Proof of Concept environment should be used to determine the required bandwidth based on actual usage scenarios. 3.10 FIREWALL AND PORTS OVD requires the following ports to be open for different servers roles. Firewall rules need to be added for the incoming and outgoing traffic. OVD Session Manager: 80 (HTTP): for communication with a browser for the OVD Administration Console 443 (HTTPS): for communication with a browser for the OVD Administration Console Page 12

1111 (HTTP): for communication with an OVD Application Server OVD Web Access: 80 (HTTP): for communication with an end user s browser 443 (HTTPS): for communication with an end user s browser OVD Application Server: 1112 (HTTP): for communication with the OVD Session Manager 3389 (RDP): for communication with an end user s browser (with the Java access) or the OVD Enterprise Client OVD File Server: 1112 (HTTP): for communication with the OVD Session Manager 1113 (HTTP): for communication with an OVD Application Server 445 (CIFS): for communication with an OVD Application Server Inuvika Enterprise Secure Gateway: 1112 (HTTP): for communication with the OVD Session Manager 443 (HTTPS): for communication with an end user s browser 3389 (RDP): for communication with an OVD Application Server Page 13

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information