Designing School Labs with VMware View 4.5 WHITE PAPER

Similar documents
The VMware Reference Architecture for Stateless Virtual Desktops with VMware View 4.5

Enterprise Desktop Solutions: VMware View 4.5

VMware Workspace Portal Reference Architecture

How To Use A Vmware View For A Patient Care System

Step-by-Step Guide to Designing School Labs with VMware View STEP-BY-STEP GUIDE

Dell Compellent Storage Center SAN & VMware View 1,000 Desktop Reference Architecture. Dell Compellent Product Specialist Team

Desktop Virtualization (VDI) Overview VMware Horizon View

Why Choose VMware vsphere for Desktop Virtualization? WHITE PAPER

Server and Storage Sizing Guide for Windows 7 TECHNICAL NOTES

VMware vsphere: Install, Configure, Manage [V5.0]

Getting Started with ESXi Embedded

VMware View Backup Best Practices

The VMware Reference Architecture for Stateless Virtual Desktops with VMware View 4.5

605: Design and implement a desktop virtualization solution based on a mock scenario. Hands-on Lab Exercise Guide

VMware vcenter Log Insight Getting Started Guide

Installing and Configuring vcenter Multi-Hypervisor Manager

WHITE PAPER 1

Dell Desktop Virtualization Solutions Stack with Teradici APEX 2800 server offload card

VMware Virtual SAN Backup Using VMware vsphere Data Protection Advanced SEPTEMBER 2014

VMware vsphere 4.1. Pricing, Packaging and Licensing Overview. E f f e c t i v e A u g u s t 1, W H I T E P A P E R

LANDesk White Paper. LANDesk Management Suite for Lenovo Secure Managed Client

Top 10 Reasons to Virtualize VMware Zimbra Collaboration Server with VMware vsphere. white PAPER

VMware vsphere: Fast Track [V5.0]

GRAVITYZONE HERE. Deployment Guide VLE Environment

VMware View 4 with PCoIP I N F O R M AT I O N G U I D E

VMware vsphere Data Protection Evaluation Guide REVISED APRIL 2015

Desktop Virtualization in the Educational Environment

Esri ArcGIS Server 10 for VMware Infrastructure

White paper Fujitsu Virtual Desktop Infrastructure (VDI) using DX200F AFA with VMware in a Full Clone Configuration

VMware Horizon 7. End-User Computing Today. Horizon 7: Delivering Desktops and Applications as a Service

Solving the Desktop Dilemma

DIABLO TECHNOLOGIES MEMORY CHANNEL STORAGE AND VMWARE VIRTUAL SAN : VDI ACCELERATION

A Vision for User Centric Computing

Mobile Secure Desktop Maximum Scalability, Security and Availability for View with F5 Networks HOW-TO GUIDE

Introduction to VMware EVO: RAIL. White Paper

VMware End User Computing Horizon Suite

Desktop Virtualization. The back-end

Cost-Effective Storage Solutions for VMware View 4.5 Enabled by EMC Unified Storage

Business Process Desktop: Acronis backup & Recovery 11.5 Deployment Guide

VMware vsphere 5.0 Evaluation Guide

Windows Server ,500-user pooled VDI deployment guide

WHITE PAPER. VMware vsphere 4 Pricing, Packaging and Licensing Overview

Kronos Workforce Central on VMware Virtual Infrastructure

vshield Administration Guide

VMware vsphere 4. Pricing, Packaging and Licensing Overview W H I T E P A P E R

Desktop Virtualization with VMware Horizon View 5.2 on Dell EqualLogic PS6210XS Hybrid Storage Array

White paper Fujitsu vshape Virtual Desktop Infrastructure (VDI) using Fibre Channel and VMware

Storage Sync for Hyper-V. Installation Guide for Microsoft Hyper-V

What s New in VMware vsphere 4.1 VMware vcenter. VMware vsphere 4.1

VMware vsphere Data Protection 6.0

VMware vcenter Update Manager Administration Guide

Quick Start Guide for VMware and Windows 7

Sizing and Best Practices for Deploying VMware View 4.5 on VMware vsphere 4.1 with Dell EqualLogic Storage

VMware vsphere with Operations Management and VMware vsphere

Increasing Storage Performance, Reducing Cost and Simplifying Management for VDI Deployments

Wyse vworkspace Supports Higher Education s Desktop Virtualization Needs

Virtual Client Solution: Desktop Virtualization

Pivot3 Reference Architecture for VMware View Version 1.03

W H I T E P A P E R. Optimized Backup and Recovery for VMware Infrastructure with EMC Avamar

Remote PC Guide Series - Volume 1

HCIbench: Virtual SAN Automated Performance Testing Tool User Guide

VMware Horizon FLEX User Guide

ORACLE VIRTUAL DESKTOP INFRASTRUCTURE

Management of VMware ESXi. on HP ProLiant Servers

EMC Business Continuity for VMware View Enabled by EMC SRDF/S and VMware vcenter Site Recovery Manager

Installing and Administering VMware vsphere Update Manager

Addressing Microsoft Windows 7 Deployments with VMware Mirage WHITE PAPER

VMware vcenter Update Manager Administration Guide

The BYOD Opportunity. Say Yes to Device Diversity and Enable New Ways to Drive Productivity WHITE PAPER

VMware View Architecture Planning

What s New in VMware vsphere 4.1 Storage. VMware vsphere 4.1

1 Introduction to Microsoft Enterprise Desktop Virtualization (MED-V) Terminology Key Capabilities... 4

Khóa học dành cho các kỹ sư hệ thống, quản trị hệ thống, kỹ sư vận hành cho các hệ thống ảo hóa ESXi, ESX và vcenter Server

VMware vshield Zones R E V I E W E R S G U I D E

VMware Virtual Desktop Infrastructure (VDI) - The Best Strategy for Managing Desktop Environments Mike Coleman, VMware (mcoleman@vmware.

Paragon Protect & Restore

Design a Scalable Virtual Desktop Infrastructure

VMware Horizon Mirage Installation Guide

On-Demand Call Center with VMware View

vcenter Chargeback User s Guide

Setting Up Desktop and Application Pools in View

Introduction to VMware vsphere Data Protection TECHNICAL WHITE PAPER

Citrix XenApp Server Deployment on VMware ESX at a Large Multi-National Insurance Company

Handling Multimedia Under Desktop Virtualization for Knowledge Workers

VMware/Hyper-V Backup Plug-in User Guide

Core Protection for Virtual Machines 1

Setting Up Desktop and Application Pools in View

VMware View Architecture Planning

Managing Remote Access

McAfee MOVE AntiVirus Multi-Platform 3.5.0

Augmenting VMware View Horizon (VDI) with Micro Focus Client Management

VMware Horizon FLEX User Guide

VMware View Upgrade Guide

Virtualization Essentials

Global Financial Management Firm Implements Desktop Virtualization to Meet Needs for Centralized Management and Performance

Outline. Introduction Virtualization Platform - Hypervisor High-level NAS Functions Applications Supported NAS models

Virtual Desktop Infrastructure (VDI) made Easy

AlwaysOn Desktop Implementation with Pivot3 HOW-TO GUIDE

Endpoint protection for physical and virtual desktops

Transcription:

Designing School Labs with VMware View 4.5 WHITE PAPER

Table of Contents.. Designing School Labs with VMware View 4.5.... 3 VMware View 4.5 Overview.... 4 New in VMware View 4.5... 4 Virtualizing the Academic Desktop: Solution Overview.... 6 Physical Component Configuration... 8 List of Prerequisites.... 9 Stateless Desktop Design.... 10 Profile Definition.... 11 Kiosk Mode.... 12 Location Based Awareness For Network Printing.... 13 Malware and Virus Protection with Agentless Design.... 13 USB Peripherals Policy Control.............................................. 15 Authentication through Active Directory (AD) and edirectory... 16 Summary... 17 About the Author... 17 WHITE PAPER / 2

Designing School Labs with VMware View 4.5 In the past decade, PCs, laptops, tablets, netbooks, and mobile devices have proliferated at academic institutions. Students and teachers alike want to use the device of their choosing to access their data and applications from any location across campus and beyond. To address these changing dynamics, educational IT organizations are shifting away from traditional approaches to device-centric computing and moving towards a user-centric model where data and applications are securely provisioned and readily available on demand, regardless of the user s location or the device being used. Virtualization is the catalyst that makes user-centric computing a reality. IT administrators are leveraging the benefits of this technology particularly in on-site and mobile labs. In a school s computer lab, a variety of applications help educators meet broad curriculum requirements for diverse groups of faculty and students. For example, a K-12 environment may need profiles for different user types, including faculty, staff, students and administrators, each with a unique set of application requirements. IT administrators can use virtualization to easily manage and maintain dozens of applications and ensure they operate at acceptable performance and service levels. This document discusses desktop virtualization with VMware View 4.5 in an educational environment and outlines a general reference architecture for a lab configuration that can accommodate up to 80 computers. The paper also calls out pertinent and useful features for this use case, including kiosk mode and anti-virus protection. WHITE PAPER / 3

VMware View 4.5 Overview VMware View 4.5 is the leading desktop virtualization solution, built for delivering desktops as a managed service from the platform to the protocol. With desktop and application virtualization, IT organizations can unlock a user s data, applications, and operating system from the end device and manage these components centrally in the datacenter. This allows the IT organization to provide a secure and customized desktop to users with a superior end-user experience from any location, on any compatible device. New in VMware View 4.5 The latest features of VMware View 4.5 include: Full Microsoft Windows 7 support A new administrative console with support for role-based authentication, and a dashboard that provides a quick view of the virtual desktop environment and troubleshooting capabilities Application assignment for deploying VMware ThinApp applications to VMware View desktop pools Tiered-storage support in VMware View Composer for increased storage flexibility and reduced storage costs Local mode, which enables a virtual desktop to download locally onto physical PCs or laptops and execute locally (security policies remain intact and only changes are checked back into storage servers or datacenters) Kiosk mode, which enables multiple users to share a published virtual desktop from a kiosk Typical VMware View 4.5 deployments consist of several common components, illustrated below. The graphic shows VMware View components as well as other components commonly integrated with VMware View. Figure 1: VMware View components WHITE PAPER / 4

VMware View starts with a back-end server for hosting the virtual desktops, which run as guest operating systems on top of the hypervisor VMware ESX or VMware ESXi Server. VMware vcenter helps manage server memory, processor, and I/O utilization. In a typical virtual desktop deployment, VMware vcenter can support up to 80 virtual machines (virtual desktops) per host. As a general rule, systems can support from four to 10 virtual machines per physical CPU core. For more information, see http://www.vmware.com/files/pdf/vmware-view-45-stateless-ra-brief.pdf to review the reference architecture summary for stateless virtual desktops with VMware View 4.5. Storage is a significant aspect of a desktop virtualization deployment, because all data that was once stored on local PC hard drives is now stored centrally in the datacenter. Consider using solid-state drives (SSDs), which can improve overall performance or using other storage architectures and technologies to centralize end-user data and desktop images, including network-attached storage (NAS) and low-cost storage area networks (SANs) built on protocols such as iscsi. VMware View Connection Server provides authentication, connection management, traffic load balancing, security, encryption and other services necessary to tie together the physical end-user device to the virtually hosted desktop. WHITE PAPER / 5

Virtualizing the Academic Desktop: Solution Overview Before attempting to virtualize a desktop environment, a good understanding of application and network load profiles, and how available bandwidth and capacity can affect the environment, is critical. For example, in a lab setting most users try to log in at the same time, placing a significant initial load on the network and the server. Media-rich applications can also place heavier loads on the infrastructure. The best approach here is to create a classification of user profiles, for example, lower-grade elementary students versus upper level high school students. To help illustrate the solution, this document discusses a lab setting with no more than 80 LAN-connected devices, such as laptops and desktops. The information in this section is adapted from the VMware Reference Architecture for Stateless Virtual Desktops with VMware View 4.5. VMware View 4.5 enables the centralization of virtual desktop environments, allowing for an extremely low cost per user. This reference architecture leverages VMware vsphere 4.1 and VMware View 4.5 software, and compute and storage devices to optimize performance and scalability and drastically reduce storage costs. VMware View provides plenty of headroom and scalability to operate in large environments with thousands of users. Additional information about larger deployments is available at http://www.vmware.com. VMware View can be deployed in a highly modular and cost-effective fashion. A stateless desktop virtualization environment designed with VMware View 4.5 with tiered storage can scale from a few hosts to hundreds of hosts, while providing the lowest cost per desktop in the industry. This design provides linear scalability across both compute and storage. Figure 2: VMware View 4.5 architecture for stateless virtual desktops WHITE PAPER / 6

The figure above shows a typical desktop deployment. In a school lab, a single rackmount server or compute blade with sufficient memory, storage and network I/O can be used. This configuration is capable of being scaled to support thousands of users, and can be configured for high availability (HA). For details on the sizing, please refer to VMware View 4.5 Reference Architecture. Lab Users Library Users Kiosk Users View 4.5 Virtual Workstations SSD Stateless User Environments Single Server - vcenter - SQL Server - Microsoft Active Directory - View Connection Server - View Virtual Desktops Shared Storage for - Server Local Disk, NAS, or SAN Figure 3: A simplified architecture for smaller VMware View deployments WHITE PAPER / 7

Physical Component Configuration The following table is a sample configuration for illustration purposes, and should not be considered a product recommendation. VMWARE VIEW DESKTOP 80 USER CLUSTER QTY Description 1 PowerEdge R610 Intel Xeon 2.93GHz/8 Cores/96GB Intel Xeon-based blade servers with 8 cores each For HA consideration, configure qty 2 1 96GB RAM total per host, such as Kingston 8GB DDR3-1333, Part #KTH- PL313/8G 1 Optional SAN or NAS storage 1 Solid State Drive (Intel X25-M 160GB SATA) 1 Broadcom Corporation NetXtreme II 57711E 10Gbit Ethernet 1 VMware vcenter Virtual Machine Windows 2008 Server R2 64bit 2 vcpu 8GB RAM 30GB Virtual Disk 1 Microsoft SQL 2008 Server Windows 2008 Server R2 64bit 2 vcpu 8GB - RAM 40GB Virtual Disk WHITE PAPER / 8

List of Prerequisites VMware vsphere 4.0 Update 2 or vsphere 4.1. / VMware Infrastructure 3.5 Update 5 and VMware Virtual Center Server 2.5 Update 6 Windows XP Deployment Guide: www.vmware.com/files/pdf/xp_guide_vdi.pdf Windows XP media, volume license key Windows Server 2003 or 2008r2 media, license key Windows 7 media, license server Windows Sysprep Media: kb.vmware.com/kb/1005593 Shared Disk Storage (SAN) 200-400GB. SAN is an optional component. SAN or local Disk is required for ESX. There must be at least one VMFS volume to store virtual machine disk files. Active Directory: View Manager uses AD to authenticate user accounts and to store VMware View desktop machine accounts. DHCP: Automatic IP configuration is required to automatically provision VMware View desktops. DNS: VMware View Connection Server and Security servers should have DNS entries, and a DNS alias for the VMware View Infrastructure Note: Additional servers can be deployed for HA. While SAN offers many benefits, deploying without it can reduce storage costs. WHITE PAPER / 9

Stateless Desktop Design Virtualized desktop can be configured in two ways: persistent or stateless. Persistent desktops are assigned to individual users and stay that way until an administrator makes a change. Properly entitled users may also check their desktops out for offline usage. This type of pool is best suited for users who want to store local data and customize their desktops by installing local applications. Non-persistent desktops are recommended for smaller academic environments. Also known as stateless desktops, they are allocated to users temporarily and used on a one-off basis. Once the user has logged off, the desktop goes back into the pool and becomes available for the next user. When properly architected, this type of pool provides extreme flexibility between the operating system, application and user data layers. When all desktop operating system images are exactly the same, there are significant storage capacity and performance benefits. A stateless design using a single non-persistent image also offers the ability to efficiently address multiple use cases, with different user profiles and applications. Users can still manage their own data files. An important part of this deployment architecture is the use of solid-state disks (SSDs), which are significantly faster than conventional hard disk drives. Using SSDs can be an advantage in an educational setting, where there can be rapid turnover between classes. Before the start of each lab, new desktops can be prepared and deployed right away to meet the student s need. As users log off, the floating desktops can be deleted (as SSDs can quickly deploy new desktops as needed). If speed is required for rapid turnaround, SSDs offer a less expensive solution than more complex storage architectures, and will improve overall ROI (return on investment). VMware View Connection Server also provides a set of power management policies that control energy usage and free up computing resources for unused desktops. To accommodate different user profiles in a stateless desktop, user information can be handled by redirecting key folders to network-based file shares using roaming profiles. The actual desktop should be viewed as disposable if at all possible. Stateless architectures, as described in the VMware View 4.5 Reference Architecture, are only able to deliver their benefit when the user data is dealt with properly. An alternative is to use a vendor solution such as Unidesk to maintain different images for the labs. Typically, many labs across the campus have similar desktops, but others may have custom desktops with specialized AutoCAD or other high-end applications that can t be easily virtualized. Maintaining different images for the labs can help reduce the cost of managing student, faculty, and staff desktops, which typically require a high degree of customization. A key to successful roaming profiles is keeping the size of the profiles as small as possible. Using extensive folder redirection, especially beyond the defaults that are found in standard group policy objects, means roaming profiles can be stripped down to a bare minimum of files. Examples of recommended folder redirections include: Application Data My Document My Pictures My Music Desktop Favorites Locking down the desktop, and specifically not allowing the user to save data locally, is especially important with stateless desktops, since the data on the desktop can be completely deleted when a user logs out of the system. WHITE PAPER / 10

Profile Definition Computer users in academic settings can be loosely divided into the following groups: Task users: Users who follow step-by-step instructions from an instructor Power users: Users who are completing task-oriented lessons, such as using Adobe Photoshop to create a design, Adobe After Effects to edit multimedia, or an integrated development environment to create a software module Knowledge users: Users who are performing general activities, such as web browsing, using Microsoft Word to write up a homework question, and so on Note that today, nearly every type of user and environment is using more multimedia, which increases the demand for compute and network resources. VMware View 4.5 provides technology and management capabilities that can be configured to deliver optimal performance for nearly any environment end user profile. VMware View 4.5 with PCoIP protocol provides real-time delivery of a rich user desktop experience using the UDP network protocol. In a campus LAN environment, network planning for the various user profiles must take into consideration graphics intensity, image quality, interactivity (as opposed to static viewing) and overall network requirements for power users. Increasingly, students and teachers are using multimedia applications, which places heavy demands on compute and network resources. Because many people use computers concurrently in a lab setting, capacity planning for peak bandwidth usage is critical. With VMware View 4.5, IT administrators can leverage VMware ThinApp to deploy applications as single, virtualized executables that run completely isolated from each other and the operating system for conflict-free execution on end-point devices. With VMware View 4.5, IT administrators can now stream ThinApp application packages to virtual machines from the datacenter. Network-based application streaming of virtualized applications increases efficiency in the campus LAN environment, since the actual applications only occupy disk and memory space on the host servers, and not on individual end-user devices. Additionally, the VMware model gives lab managers easy access and management control to a range of applications and makes these applications available for particular desktops or pools using VMware View Manager. WHITE PAPER / 11

Kiosk Mode Kiosk-mode computing can be very useful in campus environments. A typical use case in a computer lab provides access to remote desktops and applications directly without requiring dual login prompts. VMware View Kiosk mode bypasses all possible errors and Windows events. This simplifies endpoint client device maintenance and minimizes required campus IT resources. Figure 4: Physical and virtualized kiosks With VMware View, It s also possible to configure an Active Organization Unit (OU) for each grade or lab. The connection is established in the command line to a virtual desktop, seamlessly using the endpoint device MAC address or client ID. No username or password is required. Kiosk mode is ideal for simple, stateless usage such as a campus directory or information center. For more information, see Kiosk Mode with VMware View 4.5, available on the VMware.com web site. WHITE PAPER / 12

Location Based Awareness For Network Printing VMware View 4.5 associates network printers with the endpoint thin client, PC MAC address, or user group. For more information, see ThinPrint GPO Configuration for Location-Based Printing information on the VMware.com web site. Malware and Virus Protection with Agentless Design VMware View incorporates features from the VMware vsphere platform. Instead of maintaining the anti-virus or firewall policy within each guest virtual machine, VMware vshield Endpoint can be deployed to each individual ESX host and create secure zones. This simplifies anti-virus protection dramatically and helps to keep each desktop as small and efficient as possible. This design offloads the required daily routine associated with patching and maintaining individual virtual machines, and provides a central monitoring point for the security health dashboard. Figure 5: The security health dashboard WHITE PAPER / 13

Anti-virus security vendors have integrated their products with VMware VMsafe and the VMware vcenter API to provide agentless real-time scanning. The solution triggers a notification to the AV engine on file (open/ close) and provides access to file data for scanning. The solution can also send commands to perform agentless manual and scheduled scans. All on-demand scans are coordinated and staggered to prevent a resource storm. Figure 6: Security protection practice options In the event that a desktop image becomes infected or corrupted, VMware View provides an easy recompose operation to sync back with the linked clone parent image snapshot. Figure 7: The recompose option simplifies synchronization with the linked clone parent image snapshot WHITE PAPER / 14

USB Peripherals Policy Control The stateless nature of desktop in the typical campus lab enables administrators to allow or deny USB access from the desktop with a simple configuration in View Manager. If USB access causes corruption or other unauthorized issues, VMware View 4.5 provides an easy refresh, rebalance and recompose operation for the linked clone desktop. Figure 8: Refresh, rebalance and recompose operations via the View administrator screen Administrators can decide when extra precautions are needed and restrict students or other users from connecting their personal USB devices with a simple allow/deny switch. When deploying stateless desktops, IT administrators should consider enabling USB access for students to allow them to save their coursework. Lab IT professionals can allow USB devices by enabling the USB redirection policy to work with academic applications and devices (such as interactive white-boards, remote student response systems, or clickers with the endpoint device) via USB interface or deny any personal USB device access or copy-and-paste actions. WHITE PAPER / 15

Authentication through Active Directory (AD) and edirectory Many schools have consolidated user identity information across departments, simplifying network access and file sharing. Novell Domain Services for Windows (DSfW) is widely used in such scenarios. DSfW behaves like Microsoft s AD, and there are many VMware installations that leverage Novell s product. DSfW can function in an AD environment by creating an emulated AD front-end, which interacts directly with Novell directory services. It is important to note that there is no actual Microsoft AD implementation. All directory interaction happens directly with the Novell directory. DSfW s AD emulation function provides an alternate presentation of native Novell directory services. VMware View uses a local copy of Microsoft Active Directory Application Mode (ADAM) to store all configuration information but uses AD for all authentication as well as extended management functionality such as Group Policies. For an overview and implementation, visit Novell s site at http://www.novell.com/documentation/oes2/oes_ implement_lx_nw/?page=/documentation/oes2/oes_implement_lx_nw/data/dsfw.html Demonstration Environment Active Directory Domain Novel Open Enterprise Server with Domain Services for Windows nvpoc.com VM vcenter Server with View Composer VM VMware View VM Windows 7 Domain Services for Windows VM edirectory SLES10 SP2 Server VM Clone Source Virtual Desktop Virtual Desktop Pool WHITE PAPER / 16

Summary School labs are typically labor-intensive. Each class can require a different application, or professors may need test applications or other last-minute software to be installed to meet course requirements. Today, schools across the globe are rolling out desktop virtualization to address campus IT challenges. With VMware View 4.5, IT administrators can streamline the time, resources, and ultimately the cost associated with provisioning and managing desktop environments while ensuring that students have ubiquitous access to their applications and data whenever and wherever they need it. Taking the time to properly plan and profile the applications and users in advance will help to maximize the success of your virtual desktop environment and ensure that you are well positioned to scale out this environment as you move forward. Additional documentation and information on the topics discussed in this paper can be found at http://www.vmware.com/products/view/resources.html About the Author Cynthia Hsieh is responsible for solution management for End User Computing Group at VMware. She focuses on application integration, proof of concepts and security subjects. Hsieh s previous background includes product management positions at Wyse, Trend Micro, Oracle, and Yahoo. VMware, Inc. 3401 Hillview Avenue Palo Alto CA 94304 USA Tel 877-486-9273 Fax 650-427-5001 www.vmware.com Copyright 2011 VMware, Inc. All rights reserved. This product is protected by U.S. and international copyright and intellectual property laws. VMware products are covered by one or more patents listed at http://www.vmware.com/go/patents. VMware is a registered trademark or trademark of VMware, Inc. in the United States and/or other jurisdictions. All other marks and names mentioned herein may be trademarks of their respective companies. Item No: VMW_11Q1_WP_DesignSchoLabs_EN_P17

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information