Trusteer Rapport Virtual Implementation Scenarios



Similar documents
PDFDumps. PDFDumps can solve all your IT exam problems and broaden your knowledge

Integration Guide: Using Unidesk 3.x with Citrix XenDesktop

AT&T Connect Participant Application & VDI Platform Support

Microsoft Virtual Desktop Infrastructure (VDI) FAQ

Virtualization Technologies. Embrace the new world of healthcare

Desktop Virtualization. The back-end

Virtualization in Enterprise Environment. Krisztian Egi

Implementing and Managing Microsoft Desktop Virtualization en

Citrix XenApp The need for a Citrix server will still be required so no integration with our future SCCM environment will be available.

Planning and Designing Microsoft Virtualization Solutions

Course 50273B: Planning and Designing Microsoft Virtualization Solutions. Level: 300. About this Course

Implementing and Managing Microsoft Desktop Virtualization

DeviceLock Virtual DLP: Overview & Scenarios

605: Design and implement a desktop virtualization solution based on a mock scenario. Hands-on Lab Exercise Guide

2009 AAMGA Automation Conference

Implementing and Managing Windows Server 2008 Hyper-V

VDI Best Practices with Citrix XenDesktop.

Evaluating the Balabit Shell Control Box

Microsoft and Citrix: Joint Virtual Desktop Infrastructure (VDI) Offering

Citrix Training. Course: Citrix Training. Duration: 40 hours. Mode of Training: Classroom (Instructor-Led)

Server-centric client virtualization model reduces costs while improving security and flexibility.

Frequently Asked Questions: Desktone s Offerings and Market

Geek Week VDI Day 4:

APPLICATION VIRTUALIZATION COMPARISON

CITRIX 1Y0-A14 EXAM QUESTIONS & ANSWERS

Component Details Notes Tested. The virtualization host is a windows 2008 R2 Hyper-V server. Yes

Overview of Desktop Virtualization

CXD Citrix XenDesktop 5 Administration

Course: CXD-202 Implementing Citrix XenDesktop Administration

CITRIX 1Y0-A17 EXAM QUESTIONS & ANSWERS

VMware Virtual Desktop Infrastructure (VDI) - The Best Strategy for Managing Desktop Environments Mike Coleman, VMware (mcoleman@vmware.

Citrix XenDesktop with FlexCast technology. Citrix XenDesktop: Desktop Virtualization For All.

TechTarget Virtualization Media. E-Guide

White paper. Microsoft and Citrix VDI: Virtual desktop implementation scenarios

MOC 10324A: Implementing and Managing Microsoft Desktop Virtualization

Welcome the world of Citrix - where Desktops, Apps and Data are following you, where ever you go

What is virtualization

CMB-207-1I Citrix XenApp and XenDesktop Fast Track

XenDesktop 4 Product Review

Virtualization: What does it mean for SAS? Karl Fisher and Clarke Thacher, SAS Institute Inc., Cary, NC

Thin Client & Virtual Desktop White Paper

Virtual Desktop Infrastructure in

Desktop virtualization for all

Guangzhou Macau Hong Kong Shanghai Beijing

Outline SSS Microsoft Windows Server 2008 Hyper-V Virtualization

ViPNet ThinClient 3.3. Quick Start

Maximizing Your Desktop and Application Virtualization Implementation

MS_10324 Implementing and Managing Microsoft Desktop Virtualization

SearchCloudComputing.com SearchEnterpriseDesktop.com SearchVirtualDesktop.com BrianMadden.com

Citrix XenApp-7.6 Administration Training. Course

Professional and Enterprise Edition. Hardware Requirements

Maximizing Your Desktop and Application Virtualization Implementation

Virtualization and Windows 7

Get into higher gears with Citrix in 2012: XenDesktop 5.6 the most complete solution on the planet

CMB 207 1I Citrix XenApp and XenDesktop Fast Track

CSE 501 Monday, September 09, 2013 Kevin Cleary

FastPass Password Manager

Monthly Fee Per Server 75/month 295/month 395/month Monthly Fee Per Desktop/Notebook/ 15/month 45/month 55/month

Desktop Virtualization Technologies and Implementation

Increasing Your VDI Project s Return on Investment Using Workspace Virtualization

Release Version 4.1 The 2X Software Server Based Computing Guide

How bare-metal client hypervisors will mean the end of agent-based Windows management

Benefit. Allows you to integrate RES PowerFuse with application virtualization technologies other than SoftGrid (e.g. Citrix XenApp, VMWare Thinapp).

Consulting Solutions WHITE PAPER Citrix XenDesktop Citrix Personal vdisk Technology Planning Guide

RES PowerFuse Version Comparison Chart (1/9)


Citrix XenDesktop Administrator s Guide. Citrix XenDesktop 3.0 Citrix XenDesktop

SecureAnywhereTM Business Global Site Manager

Comparing Application and Desktop Virtualization Technologies. Comparing Application and Desktop Virtualization Technologies

Competitive Comparison Between Microsoft and VMware Desktop Virtualization Solutions

Citrix Desktop Virtualization Fast Track

Ensure that the server where you install the Primary Server software meets the following requirements: Item Requirements Additional Details

Hypervisor Software and Virtual Machines. Professor Howard Burpee SMCC Computer Technology Dept.

The Ultimate Guide to Managing Apps in Citrix XenDesktop VDI

Virtual Desktop Technologies aka It s all about VDI. David S. Michel Director of Technology Turner Padget Columbia, SC RVP South Atlantic Region

XenApp and XenDesktop 7.8 AppDisk & AppDNA for AppDisk technology

DESKTOP TRANSFORMATION USING VIRTUAL DESKTOP INFRASTRUCTURE (VDI)

Desktop virtualization for all

Implementing and Managing Microsoft Server Virtualization

Virtual Application Management with Microsoft Application Virtualization 4.6 and System Center 2012 Configuration Manager

User Manual. User Manual Version

MANAGING PRINT SERVER DEVICES WITH "WINDOWS XP" VIRTUAL MACHINES

This document details the procedure for installing Layer8 software agents and reporting dashboards.

Evento Assyrus Microsoft 2009

Enterprise Desktop Solutions: VMware View 4.5

Hosted Desktop Model vs. SBC, VDI and Traditional Desktop Position Document

In addition to their professional experience, students who attend this training should have technical knowledge in the following areas.

Augmenting VMware View Horizon (VDI) with Micro Focus Client Management

Intelligent Laptop Virtualization No compromises for IT or end users. VMware Mirage

SNOW LICENSE MANAGER (7.X)... 3

Suh yun Ki m (KIS T) (KIS suhyunk@.com

Transcription:

Trusteer Rapport Virtual Implementation Scenarios Technical White Paper Version 1.0 October 2012 new threats, new thinking

Contents About this Document 1 1. Overview of Virtual Desktop/Machine Environments 2 Local Virtual Machine Desktops 2 Hosted Virtual Machines Infrastructure 2 Local Streamed Desktops (OS Streaming) 3 Shared Virtual Desktop Infrastructure (Session Virtualization) 3 Application Streaming 4 2. Best Practices when Implementing Rapport on Virtual Environments 5 Local Virtual Machine Desktops 5 Where to Install Rapport? 5 How is Rapport Affected in this Implementation? 5 Hosted Virtual Machine Infrastructure 5 Where to Install Rapport? 5 How is Rapport Affected in this Implementation? 6 Local Streamed Desktops 6 Where to Install Rapport? 6 How is Rapport Affected in this Implementation? 7 Shared Virtual Desktop Infrastructure (Session Virtualization) 7 Where to Install Rapport? 7 How is Rapport Affected in this Implementation? 8 Application Streaming 8 Trusteer Rapport Virtual Implementation Scenarios ii

Where to Install Rapport? 8 3. Supported Operating Systems 9 Trusteer Rapport Virtual Implementation Scenarios iii

About this Document Described below are the major Virtual Desktop implementation scenarios available in the market. Each one of these scenarios has its advantages and disadvantages. Please follow this document in order to understand how and where to successfully integrate Trusteer Rapport in your virtual infrastructure. Trusteer Rapport Virtual Implementation Scenarios 1

1. Overview of Virtual Desktop/Machine Environments Local Virtual Machine Desktops Desktop runs on the user s local device on a virtual machine (VM). This enables a user to run multiple desktops on the same physical computer allowing IT to lockdown the business environment on one desktop while the users can still make personal use of their PC. Some examples of such infrastructures are: Citrix Local VM Desktop (FlexCast) VMware workstation Microsoft Hyper-V Hosted Virtual Machines Infrastructure A central machine consisting of multiple Virtual Machines serving users who may be geographically scattered but are all connected to an assigned isolated VM by a proprietary protocol using a client interface delivered by one of the vendors providing the Virtualization platform. Some examples of vendors who provide this technology are: Citrix XenDesktop Hosted VDI Desktop Flexcast VMware View Microsoft Desktop Virtualization Sun VirtualBox Hosted Desktop virtualization provides the advantage in which every computer operates as a completely self-contained, isolated unit with its own operating system, peripherals and application programs. Trusteer Rapport Virtual Implementation Scenarios 2

Local Streamed Desktops (OS Streaming) With OS streaming, computers boot and run from using image file stored on the network, in a fashion similar to audio streaming. With audio streaming, songs are maintained on a central server and then streamed to a client PC on demand; with OS streaming, the actual operating system and the applications are streamed to the desktop from a central server when the PC is booted up from a disk image file and when any applications or libraries are loaded. Some examples of vendors who provide this technology are: Citrix Xendesktop Streamed VHD Desktop Flexcast VMware Ace OS streaming provides the advantage of, centralized management of images and patching while letting each user work in an isolated system. Shared Virtual Desktop Infrastructure (Session Virtualization) With Shared desktops (often referred to as remote desktops or session virtualization) a single system runs in the Data center and is shared across multiple users. The remote desktop system cannot be modified by end users and no data is stored locally. Some Vendor examples for Hosted shared Virtual Desktops are: Citrix XenDesktop XenApp (session virtualization) Microsoft Remote Desktop (RDP) Real VNC Enterprise Shared Virtual Desktops ensure, confidential data is secured and supports a large number of users on the same machine. Trusteer Rapport Virtual Implementation Scenarios 3

Application Streaming With Application streaming, users run each on their own PC while the applications are streamed to the client PC upon demand. IT administrators can manage apps and let users choose the application they need to use according to their permissions. This allows offline use of the OS and full isolation between different users. Citrix On Demand Apps VMware Thinapp Microsoft App-V Trusteer Rapport Virtual Implementation Scenarios 4

2. Best Practices when Implementing Rapport on Virtual Environments There are a few issues to consider when implementing Trusteer Rapport on virtual environments. These considerations are based on the type of access, the type of implementation and the need of Rapport coverage. Local Virtual Machine Desktops Where to Install Rapport? When an application streaming infrastructure is used, Rapport is not able to function properly. In cases like these Trusteer recommends creating a separate virtual installation using any of the Supported Operating Systems (on page 9). This Virtual Machine should be available to individuals who require secure online banking and shall be used for this purpose. This setup ensures full Rapport functionality while not impacting other user s daily work. How is Rapport Affected in this Implementation? Using this implementation scenario and as long as Rapport is installed on one of the supported OS platforms listed at the bottom of this document. There are no limitations which should prevent Rapport normal functionality. Hosted Virtual Machine Infrastructure Where to Install Rapport? In Hosted VDIs Trusteer Rapport should be installed on the virtual images hosted on the central server. Depending on the permissions set by the Administrator, the end users may or may not have permissions to install/un-install software on the different images including Rapport. Trusteer Rapport Virtual Implementation Scenarios 5

With Hosted Virtual Machine Infrastructures each single user gets a remote virtual machine assigned to them upon access. This machine does not necessarily have to be the exact same physical machine every time the user connects. The Hosted Virtual machines are isolated from each other and changes made by one user affects that specific user only. Hosted Virtual environments can consist of multiple different OS versions where each user is directed to the relevant platform running the specific relevant OS. How is Rapport Affected in this Implementation? In specific cases where a malware removal process is initiated, Rapport requires a reboot of the system in order to complete the malware removal. Permissions to reboot remotely hosted virtual desktops are required. Trusteer recommends enabling these permission levels in order to keep Rapport up to date and ensure full protection. Local Streamed Desktops Where to Install Rapport? In Local streamed VDIs Trusteer Rapport should be installed on the image that is streamed to the end user PC. In some cases, the OS streamed to the end users PC is refreshed and served clean on each reboot of the end user s PC however in other configurations the end users data will be saved on a vdisk and this data is served to the users on the next time they boot their system. Trusteer Rapport Virtual Implementation Scenarios 6

How is Rapport Affected in this Implementation? There are two main implementations for streamed Desktops: 1. Non-persistent implementations In these implementation types the end user receives a new "clean" OS on every boot of their client PC. This means that the OS consists of the same settings as long as the Administrator has not updated the images that are served to the end users. In these cases, Rapport will not be properly updated in terms of configuration and software updates. It is strongly advised not to use this implementation type for Rapport installations. 2. Persistent implementations - In these types of implementations, supported by some virtualization vendors, where changes are stored and saved per user on a remote vdisk. (i.e. Citrix XenDesktop Streamed VHD Private mode), Rapport stays up to date as configuration and updates are stored per user. Note: While technically possible, Trusteer strongly advises against running Rapport in an environment which serves a clean OS on every boot. This will most certainly lead to updates and configurations being erased, resulting in outdated Rapport versions and configurations and in rapidly degrading protections over time. In such Infrastructures Trusteer advises to provide a specific virtual installation on a local machine for the entities which may require secure online banking. Shared Virtual Desktop Infrastructure (Session Virtualization) Where to Install Rapport? In case of a remote server handling multiple user sessions, Rapport is installed on that specific server or, when there are multiple load balanced remote servers, Rapport needs to be installed on each of these servers. Rapport Version 11.08 has multiple session support and therefore a single installation of Rapport can handle multiple profiles. Trusteer Rapport Virtual Implementation Scenarios 7

How is Rapport Affected in this Implementation? As Rapport is installed only once, enabling or disabling it performs the task for all users/sessions currently using the remote server. Note: When only a few individuals in the company require secure online banking access with Rapport, it is recommended to install a virtual machine on the remote server. Only these specific individuals should have access to the VM image running Rapport. This ensures full Rapport functionality without impacting other user s system functionality. Running Trusteer Rapport on Windows Servers Trusteer Rapport is supported on the following servers: Win 2K3R2, 32 and 64 bit, Win 2K8R1, 32 and 64 bit Win 2K8R2, 64 bit. The server version of Rapport enables the Administrator to decide if Rapport sends users restart requests when required or if the restart requests are presented to the end users in order to avoid a situation where one user restarts the system for all users running on the system. In situations where the restart messages to end users are disabled, the Administrator should follow up on the system alerts and restart the system whenever necessary. Application Streaming Where to Install Rapport? When an application streaming infrastructure is used, Rapport is not able to function properly. In cases like these Trusteer recommends creating a separate virtual installation using any of the Supported Operating Systems (on page 9). This Virtual Machine should be available to individuals who require secure online banking and shall be used for this purpose. This setup ensures full Rapport functionality while not impacting other user s daily work. Trusteer Rapport Virtual Implementation Scenarios 8

3. Supported Operating Systems Trusteer Rapport runs on the following operating systems: Windows Operating Systems, 32-bit and 64-bit (Windows XP, Vista and Windows 7), Windows Server 2003 and 2008 (supported in Rapport version 1108) Mac OS X Leopard (10.5), Snow Leopard (10.6) and Lion (10.7) Note: When deploying on Windows 2003 R2 through RDP (Scenario 4), all users accessing the machine should have the "Create Global Objects" privilege (SeCreateGlobalObjects) in order for Rapport to function properly. For detailed information about supported platforms refer to: http://www.trusteer.com/supported-platforms VDI Type Local Virtual Machine Desktops Supported Hosted Virtual Machine Infrastructure Local streamed desktops (OS streaming) * Shared Virtual Desktop Infrastructure ** Application streaming x *** Notes: * Only Rapport installations on streamed infrastructures where the user s data is stored and served upon reboot will function properly. Rapport Installations where the user s data is erased and a clean OS is served on every boot will not function securely in the long run. See detailed explanation. ** When using a shared Virtual Desktop, in order to provide ideal usability to all users, it is recommended to create a Virtual Image on the remote server and run Rapport of that Virtual image when required. See detailed explanation. *** When using application streaming Rapport requires a separate isolated VM installation in order to function properly. Where to Install Rapport? (on page 5) Trusteer Rapport Virtual Implementation Scenarios 9

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information