VMware User Environment Manager



Similar documents
Helpdesk Support Tool Administrator s Guide

ThinPrint GPO Configuration for Location-Based Printing

User Environment Manager Administrator s Guide

MailStore Outlook Add-in Deployment

ContentWatch Auto Deployment Tool

Administration Guide. . All right reserved. For more information about Specops Deploy and other Specops products, visit

Deployment of Keepit for Windows

VMware Identity Manager Integration with Active Directory Federation Services 2.0

Create, Link, or Edit a GPO with Active Directory Users and Computers

VMware View Persona Management DEPLOYMENT GUIDE

DigitalPersona Pro Server for Active Directory v4.x Quick Start Installation Guide

Tool Tip. SyAM Management Utilities and Non-Admin Domain Users

SAS 9.3 Foundation for Microsoft Windows

HELP DOCUMENTATION E-SSOM DEPLOYMENT GUIDE

SARANGSoft WinBackup Business v2.5 Client Installation Guide

Zimbra Import Wizard for Microsoft Outlook

VMware vcenter Configuration Manager Backup and Disaster Recovery Guide vcenter Configuration Manager 5.4.1

VMware vcenter Configuration Manager and VMware vcenter Application Discovery Manager Integration Guide

Reconfiguration of VMware vcenter Update Manager

Comodo MyDLP Software Version 2.0. Endpoint Installation Guide Guide Version Comodo Security Solutions 1255 Broad Street Clifton, NJ 07013

Windows Clients and GoPrint Print Queues

Getting Started with Database-as-a-Service

Upgrading Horizon Workspace

Getting Started with Database Patching

4cast Client Specification and Installation

vcenter Configuration Manager Backup and Disaster Recovery Guide VCM 5.3

Group Policy for Beginners

Using Group Policies to Install AutoCAD. CMMU 5405 Nate Bartley 9/22/2005

VMware vsphere Data Protection 5.8 TECHNICAL OVERVIEW REVISED AUGUST 2014

Module 5: Implementing Group Policy

How to Migrate Citrix XenApp to VMware Horizon 6 TECHNICAL WHITE PAPER

VMware vcenter Support Assistant 5.1.1

User Document. Adobe Acrobat 7.0 for Microsoft Windows Group Policy Objects and Active Directory

VMware Horizon Mobile Secure Workplace User Installed Applications Support with Liquidware Labs HOW-TO GUIDE

Getting Started with ESXi Embedded

Installation Guide. . All right reserved. For more information about Specops Deploy and other Specops products, visit

Redeploying Microsoft CRM 3.0

ACTIVE DIRECTORY DEPLOYMENT

Adobe Acrobat 9 Deployment on Microsoft Windows Group Policy and the Active Directory service

Migrating a Windows PC to Run in VMware Fusion VMware Fusion 2.0

Autograph 3.3 Network Installation

Windows Firewall Configuration with Group Policy for SyAM System Client Installation

VMware vsphere Data Protection 6.0

Sharpdesk V3.5. Push Installation Guide for system administrator Version

EventTracker: Support to Non English Systems

Installing and Configuring vcloud Connector

Configuring Single Sign-on from the VMware Identity Manager Service to Dropbox

Getting Started with Database Provisioning

Specops Command. Installation Guide

Chapter. Managing Group Policy MICROSOFT EXAM OBJECTIVES COVERED IN THIS CHAPTER:

Integration with Active Directory

ENABLE LOGON/LOGOFF AUDITING

Integrating VMware Horizon Workspace and VMware Horizon View TECHNICAL WHITE PAPER

Installing Client GPO Software

Setting Up Resources in VMware Identity Manager

Group Policy 21/05/2013

Chapter 1 Scenario 1: Acme Corporation

VMware vsphere Data Protection Evaluation Guide REVISED APRIL 2015

Outpost Network Security

Virtual Printing Solutions with View in Horizon 6

TECHNICAL DOCUMENTATION SPECOPS DEPLOY / APP 4.7 DOCUMENTATION

VMware vcenter Configuration Manager Backup and Disaster Recovery Guide vcenter Configuration Manager 5.7

Pocket ESA Network Server Installation

SELF SERVICE RESET PASSWORD MANAGEMENT GPO DISTRIBUTION GUIDE

DriveLock Quick Start Guide

Reconfiguring VMware vsphere Update Manager

Installing and Configuring vcenter Multi-Hypervisor Manager

CommVault Simpana Archive 8.0 Integration Guide

Installation Guide. . All right reserved. For more information about Specops Deploy and other Specops products, visit

VMware vcenter Configuration Manager Software Provisioning Components Installation and User Guide

DeviceLock Management via Group Policy

ilaw Installation Procedure

Configuring Single Sign-on from the VMware Identity Manager Service to AirWatch Applications

Quick Start Guide. IT Management On-Demand

How to Install Multiple Monitoring Agents on a Microsoft Operating System. Version StoneGate Firewall/VPN 2.6 and SMC 3.2

What s New in VMware Data Recovery 2.0 TECHNICAL MARKETING DOCUMENTATION

About This Guide Signature Manager Outlook Edition Overview... 5

Secrets of Event Viewer for Active Directory Security Auditing Lepide Software

Customizing the SSOSessionTimeout.jsp page for Kofax Front Office Server 3.5.2

Step-by-Step Guide for Microsoft Advanced Group Policy Management 4.0

Test Note Phone Manager Deployment Windows Group Policy Sever 2003 and XP SPII Clients

Module 8: Implementing Group Policy

SQL Server Setup for Assistant/Pro applications Compliance Information Systems

VERITAS Backup Exec TM 10.0 for Windows Servers

G DATA TechPaper #0204. Installing G Data Security Client using GPOs and logon scripts. G DATA Service Team

Project management integrated into Outlook

Chapter 2 Editor s Note:

Configuring Single Sign-On from the VMware Identity Manager Service to Office 365

For Active Directory Installation Guide

Server Installation: ServerTools

Replacing vcenter Server 4.0 Certificates VMware vsphere 4.0

Cloud Attached Storage

VMware Mirage Web Manager Guide

GroupWise to PST Migrator

How To Install Ctera Agent On A Pc Or Macbook With Acedo (Windows) On A Macbook Or Macintosh (Windows Xp) On An Ubuntu (Windows 7) On Pc Or Ipad

EMC Documentum Repository Services for Microsoft SharePoint

MOC 6419: Configuring, Managing, and Maintaining Windows Server 2008

STATISTICA VERSION 9 STATISTICA ENTERPRISE INSTALLATION INSTRUCTIONS FOR USE WITH TERMINAL SERVER

Installation and Deployment

Transcription:

VMware User Environment Manager Deployed in 60 Minutes or Less Author: Dale Carter Senior Solution Architect VMware Technology Consulting Services April 2015

Table of Contents 1. VMware User Environment Overview.... 3 2. Installation Steps... 4 2.1 Create two file shares (10 minutes or less).... 4 2.2 Configure Windows GPOs (10 Minutes or Less).... 5 2.3 UEM Management Console Install (10 Minutes or Less).... 7 2.4 UEM Management Console Configuration (One Minute).... 8 2.5 Easy Start Configuration (Two Minutes)... 8 2.6 UEM Agent Installation (10 Minutes or Less)... 9 2.6 Deploy 50 Horizon Linked Clone Desktops (15 Minutes or Less).. 10 2.7 Summary.... 10 PROFESSIONAL SERVICES TECHNICAL GUIDE / 2

VMware User Environment Manager Deployed in 60 Minutes or Less 1. VMware User Environment Overview With the VMware acquisition of Immidio, announced in February 2015, just two months later VMware has now released VMware User Environment Manager (UEM). In the last several weeks I have been doing some internal testing with UEM; looking at the different capabilities the software has, and how this application will help administrators manage users and improve the user experience. UEM is straightforward to deploy and get up-and-running, as there is no extra infrastructure needed to configure UEM. All that is required to configure UEM is: A couple of file shares Configuration of group policy objects (GPOs) on the user organizational unit (OU) Installation of UEM agent and manager software There is no management server component other than network file shares and configuration of a few GPOs. This example shows how you can perform a basic deployment for 50 linked clone virtual machines in 60 minutes. For an enterprise with many sites, decisions will need to be made about configuring network shares and where to place them on the network. But most of the work, as you will see, can easily be accomplished in 60 minutes or less. PROFESSIONAL SERVICES TECHNICAL GUIDE / 3

2. Installation Steps 2.1 Create two file shares (10 minutes or less) UEM Configuration Share This share contains the central configuration for UEM. The UEM Management Console is used to create and edit the UEM configuration. Administrators use the UEM Management Console, so they need change permissions to be able to create and edit the UEM configuration. When a user logs on, the UEM FlexEngine reads the configuration in this share to determine which configuration should be applied. That is why users only need read permissions. This share can be any central share on a file server, or a CIFS share from a SAN/NAS device. For multi-site scenarios this share can be replicated as long as the path to the share is the same for all client devices. DFS namespaces are supported. Example share name: \\server\uemshare The minimum share permissions are change for administrators and read for users. Set the following NTFS security permissions on this share: For administrators of UEM: Full control For users of UEM: Read & execute UEM Profile Archive Share This share is used to store the personal settings for all the users. A unique subfolder is created for each user. The personal user settings are read from this share at logon or application start, and are written back at logoff or application exit. Users need change permissions to store their personal settings in this share. This share contains mostly.zip files, the so-called UEM profile archives. The total storage space for this share depends on the number of users, applications, and backups. Example share name: \\server\uemprofiles The minimum share permissions should be change for all users. Set the following NTFS security permissions on this share: For UEM administrators or Helpdesk: Full control Apply to: This folder, subfolders and files For users of UEM: Read & execute and Create folders/append data Apply to: This folder only For creator/owner: Full control Apply to: Subfolders and files only PROFESSIONAL SERVICES TECHNICAL GUIDE / 4

Figure 1 shows the configured permissions. Figure 1. Configured permissions 2.2 Configure Windows GPOs (10 Minutes or Less) Copy the VMware User Environment Manager GPOs Before creating the VMware UEM GPOs you need to copy the GPOs to the correct location. Both the.admx and.adml files can be downloaded as part of the VMware UEM download. Copy these files to one of your Active Directory Servers in the following locations: Copy the.admx files to: C:\Windows\SYSVOL\sysvol\domianname\Policies\PolicyDefinitions Copy the.adml files to: C:\Windows\SYSVOL\sysvol\domianname\Policies\PolicyDefinitions\en-US Creating the VMware User Environment Manager GPO 1. Open the Group Policy Management Console. Create a new GPO that will be applied to the users who will be managed by the UEM FlexEngine. 2. Right-click on the newly created GPO and click Edit. 3. Configure the following UEM Group Policy settings: Note: The policies are found under: User Configuration > Administrative Templates > VMware UEM > FlexEngine a. UEM config files: Use this setting to configure the central location of the UEM config files for uses by the UEM FlexEngine. i. Enter the following value: \\UEMServer\UEMShare\general ii. Note: Always include the general folder at the end of the path iii. Enable the option Process folder recursively b. Profile archives: Use this setting to configure the location that is used by the UEM FlexEngine to read and store user profile archives and other settings related to profile archives. It is necessary to use a location that is unique for each user, which is why the variable %username% is used. This way, a unique folder is created for each user. PROFESSIONAL SERVICES TECHNICAL GUIDE / 5

i. Enter the following value: \\Server\UEMprofiles\%username%\archives ii. Enable the option Compress profile archives c. Profile archive backups: Use this setting to configure the location that is used by the FlexEngine to store backups of profile archives. i. Enter the following value: \\Server\UEMprofiles\%username%\backups ii. At Number of backups per profile archive : Choose the required number c. Profile archive backups: Use this setting to configure the location that is used by the FlexEngine to store backups of profile archives. d. Run FlexEngine as Group Policy Extension: Enable this setting to run FlexEngine automatically during logon by running as a Group Policy client-side extension. i. Important: To guarantee the UEM FlexEngine Group Policy client-side extension will run during each logon, you must enable the Computer Group Policy setting to Always wait for the network at computer startup and logon. This policy is available under: Computer Configuration/Policies/Administrative Templates/System/Logon ii. Be sure to apply this Group Policy to an OU in Active Directory where all the Windows clients are located. e. FlexEngine logging: Use this setting to configure the location of the UEM FlexEngine log file, the level of log detail, and the maximum size of the log file. ii. Enable the option Compress profile archives i. Enter the following value: \\Server\UEMprofiles\%username%\logs ii. Log level: Debug Log level should be changed to Warn in a production environment. iii. Maximum log file size in kb: 512 4. It is always necessary to configure the UEM FlexEngine logoff command to run from a logoff script. This way, the personal settings or users are exported at logoff. In the same GPO, go to User Configuration\Windows Settings\Scripts and configure the logoff command. The UEM FlexEngine logoff command that needs to run during the logoff process is: C:\Program Files\Immidio\Flex Profiles\FlexEngine.exe s 5. As a best practice the following GPO should also be configured: Computer Configuration\Administrative Templates\System\Logon\Always Wait for the network at computer startup and logon PROFESSIONAL SERVICES TECHNICAL GUIDE / 6

2.3 UEM Management Console Install (10 Minutes or Less) Install the VMware UEM Management Console on an administrator s machine. This can be any computer, whether it s a desktop or a central server used for administrative tasks. Install the VMware UEM Management Console by executing VMware User Environment Manager 8.6 x.msi. The VMware UEM Setup Wizard will guide you through the steps required to install the software on your computer: 1. Run VMware User Environment Manager 8.6 x.msi 2. Click Next 3. Accept the license agreement and click Next 4. Select the install location and click Next 5. Select Custom 6. Ensure the Management Console is selected and click Next Figure 2. VMware User Environment Manager Setup widget 7. Browse to a license file and click Next 8. Click Install 9. Click Finish PROFESSIONAL SERVICES TECHNICAL GUIDE / 7

2.4 UEM Management Console Configuration (One Minute) Start the UEM Management Console to complete the initial configuration. You will see the following dialog the first time you start the UEM Management Console. Figure 3. UEM Management Console Fill in the Universal Naming Convention (UNC) path to the UEM configuration share created earlier, and click OK. After this step you will be presented with a settings screen. Keep the default settings and press OK. This completes the initial configuration of the UEM Management Console. 2.5 Easy Start Configuration (Two Minutes) Easy Start installs a default set of UEM configuration files that allow you to quickly get a feel for the functionalities of: UEM Personalization User Environment Condition Sets In addition to the default configuration files, you can also choose to have Easy Start create UEM config files and user environment shortcuts for one or more versions of Microsoft Office. To use this option simply click Easy Start in the ribbon. Figure 4. VMware User Environment Manager Easy Start PROFESSIONAL SERVICES TECHNICAL GUIDE / 8

After that you are presented with an option to include UEM config files and user environment shortcuts for one or more versions of Microsoft Office. Figure 5. UEM Easy Start Microsoft Office menu Select the Office version(s) you are using and click OK. A popup message confirms the Easy Start configuration is complete. 2.6 UEM Agent Installation (10 Minutes or Less) For this configuration I ll install the agent on a golden image desktop to deploy 50 linked clone desktops. The UEM FlexEngine is the UEM agent component and needs to be installed on all computers managed by UEM. You can install the UEM FlexEngine on physical desktops and laptops, virtual desktops and terminal servers. The steps to install the VMware UEM FlexEngine are: 1. Run VMware User Environment Manager 8.6 x.msi 2. Click Next 3. Accept the license agreement and click Next 4. Select the install location and click Next 5. Select Custom 6. Ensure the Management Console is NOT selected and click Next PROFESSIONAL SERVICES TECHNICAL GUIDE / 9

Figure 6. UEM Setup screen 7. Browse to a license file and click Next 8. Click Install 9. Click Finish 2.6 Deploy 50 Horizon Linked Clone Desktops (15 Minutes or Less) For this test I have created a new desktop pool within my VMware Horizon environment. I will use the golden image I installed in the VMware UEM Agent as the master image, and deploy 50 desktops. These desktops will be added to an OU in active directory that has the UEM GPOs configured on the OU. 2.7 Summary As you can see from this test, I was able to deploy UEM in around 43 minutes, and it took 15 minutes to deploy desktop pool of 50 desktops. The result: Configuring VMware UEM in less than 60 minutes for a small group of 50 virtual desktop users. To deploy this solution in a large enterprise, there will need to be more planning and more decisions than I needed in my test environment, but this approach is a great starting point for a small pilot of what I am finding to be a fantastic solution for user management. For more information on VMware User Environment Manager, be sure to visit: www.vmware.com/products/user-environment-manager/ VMware, Inc. 3401 Hillview Avenue Palo Alto CA 94304 USA Tel 877-486-9273 Fax 650-427-5001 www.vmware.com Copyright 2015 VMware, Inc. All rights reserved. This product is protected by U.S. and international copyright and intellectual property laws. VMware products are covered by one or more patents listed at http://www.vmware.com/go/patents. VMware is a registered trademark or trademark of VMware, Inc. in the United States and/or other jurisdictions. All other marks and names mentioned herein may be trademarks of their respective companies. Item No: VMW_15Q2_TD_VMware-User-Environment-Manager 04/15

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information