VMware & Unidesk Customer Webinar: Wisconsin Department of Children and Families


Published on

Presentation slides from VMware and Unidesk webinar with joint customer Wisconsin Department of Children and Families.

Published in: Technology
  • Be the first to comment

  • Be the first to like this

No Downloads
Total views
On SlideShare
From Embeds
Number of Embeds
Embeds 0
No embeds

No notes for slide
  • Describe the 3 core components made up of Virtual appliances: MA Master CA and distributed Cache Points hosting desktops. Broker agnostic Sitting on virtual infrastructure (Vmware today, Citrix in the future)
  • Enable offloaded and centralized anti-virus and anti-malware (AV) solutions with the ability to integrate with AV solutions such as those from Trend Micro AV services run centrally in a security VM Centralization of AV through vShield Endpoint eliminates agent sprawl across desktop virtual machines Centralization also helps to eliminate AV storm issues typically associated with AV services distributed across virtual machines This solution allows IT to better control the AV service ensuring compliance and protection across the desktop environment IT management and logging of AV is simplified through centralization vShield Endpoint is included as part of the View Primer bundle and can also be purchased stand alone
  • VMware & Unidesk Customer Webinar: Wisconsin Department of Children and Families

    1. 1. Webinar: Make VDI Personal – How State of Wisconsin DCF is Virtualizing its 1,200 Desktops Maytee Aspuro Chief Information Officer Ron Oglesby VMware vExpert Microsoft MVP Chief Solution Architect Chris Fox Senior Software Engineer
    2. 2. Desktop Virtualization Bureau of Milwaukee Child Welfare
    3. 3. The Challenge Wave One / Phase One & Two: To transition 250+ staff to an efficient, agile, responsive, secure, accessible/mobile, recoverable, and comprehensive desktop that can be reasonably customized and centrally supported with limited financial and labor resources. dcf.wisconsin.gov
    4. 4. <ul><li>The Business Case </li></ul><ul><li>Meeting Operational Requirements </li></ul><ul><ul><li>Scalability </li></ul></ul><ul><ul><li>Flexibility and Agility </li></ul></ul><ul><ul><li>Longevity </li></ul></ul><ul><li>Customer Service </li></ul><ul><li>Total Cost of Ownership </li></ul><ul><li>Highly Mobile Workforce (internal & external) </li></ul><ul><li>COOP Solution </li></ul>dcf.wisconsin.gov
    5. 5. <ul><li>Success Measures </li></ul><ul><li>User Persona </li></ul><ul><ul><li>Meet or beat previous desktop experience </li></ul></ul><ul><li>Manageability </li></ul><ul><ul><li>Enable fewer IT staff to accomplish more </li></ul></ul><ul><li>Storage </li></ul><ul><ul><li>Conserve space while maximizing performance </li></ul></ul><ul><li>Mobility </li></ul><ul><ul><li>Anytime / Anywhere </li></ul></ul>dcf.wisconsin.gov
    6. 6. <ul><li>The Customer </li></ul><ul><li>Bureau of Milwaukee Child Welfare </li></ul><ul><li>1/4 of the total DCF population </li></ul><ul><li>Highly Mobile </li></ul><ul><ul><li>Externally: Staff operate in a wide variety of </li></ul></ul><ul><ul><li>environments </li></ul></ul><ul><ul><li>Internally: Staff regularly moves among locations based on tactical needs </li></ul></ul><ul><ul><li>High turnover rate (~20% annually) </li></ul></ul><ul><li>Access to sensitive data </li></ul><ul><li>Task oriented </li></ul><ul><li>High risk of equipment theft </li></ul><ul><li>Undergoing substantial strategic restructuring and reorganization </li></ul>dcf.wisconsin.gov
    7. 7. <ul><li>The Partnership </li></ul><ul><li>Department of Children & Families </li></ul><ul><ul><li>Bureau of Information Technology Services (BITS) </li></ul></ul><ul><ul><li>Bureau of Milwaukee Child Welfare (BMCW) </li></ul></ul><ul><li>Department of Administration </li></ul><ul><ul><li>Division of Enterprise Technology </li></ul></ul><ul><li>Vendors (Listed Chronologically by Engagement) </li></ul><ul><ul><li>HP/PDS </li></ul></ul><ul><ul><li>Cisco/AT&T </li></ul></ul><ul><ul><li>VMware </li></ul></ul><ul><ul><li>InSight </li></ul></ul><ul><ul><li>Lenovo </li></ul></ul><ul><ul><li>CDW-G </li></ul></ul><ul><ul><li>Riverbed/A&E Business Solutions </li></ul></ul><ul><ul><li>Unidesk </li></ul></ul><ul><ul><li>SolarWinds </li></ul></ul><ul><ul><li>Microsoft </li></ul></ul><ul><ul><li>Symantec </li></ul></ul>dcf.wisconsin.gov
    8. 8. The Timeline dcf.wisconsin.gov Wave 1 – Phase 1 Infrastructure Foundation and Services Layer Implementation June 2010 – September 2010 Wave 1 – Phase 2 BMCW Network and Workstation Migration October 2010 – December 2010 LAN, WAN, Datacenter Network Management Transition from DOA/DET to DCF June 2010 – December 2010 Service Desk/HelpDesk Implementation November 2010 – December 2010 eWISACWIS Modernization October 2010 – July 2011 Wave 2 Transition of Workstation, file/print services from DWD March 2011 – December 2011 Transition of DWD hosted KIDS & CARES web-based applications January 2012 – December 2012 Wave 3 Optimization & Consolidation January 2013 – June 2013
    9. 9. DCF Technology Selection dcf.wisconsin.gov Hardware Server Platform HP BladeCenter C7000 w/ BL460c Blades Storage Platform Primary and Secondary: HP EVA 8000 Series Backup and Archival: Symantec NetBackup Network Data-center Networking Cisco Nexus 7000/5000 Series Switches, ASA Firewall & VPN WAN Optimization/Acceleration Riverbed Virtualization Server Virtualization VMware vSphere 4.1 Enterprise Plus Desktop Virtualization VMware View 4.5 / Unidesk Management and Monitoring PC, Server Lifecycle Management Microsoft Systems Center Configuration Manager (SCCM) Infrastructure Monitoring Microsoft Systems Center Operations Manager (SCOM), HP Systems Insight Management, HP Storage Essentials Network Monitoring Orion Solarwinds Network Performance Monitor Service Desk Microsoft Systems Center Service Manager 2010
    10. 10. <ul><li>Why Virtualize The Desktop? </li></ul><ul><li>Separation of the OS, applications and hardware. </li></ul><ul><ul><li>This separation will increase agility while decreasing support costs (firms commonly report 50% decreases in desktop support costs while improving service delivery). </li></ul></ul><ul><li>Windows 7 Support </li></ul><ul><li>Simplified Desktop Management </li></ul><ul><li>Automated Desktop Provisioning </li></ul><ul><li>Built-in Security </li></ul><ul><li>Availability and Scalability </li></ul><ul><li>Streamlined Application Management </li></ul><ul><li>Advanced Virtual Desktop Image Management </li></ul><ul><li>And the topic we all love to hate…COOP </li></ul>dcf.wisconsin.gov
    11. 11. DCF VDI Architecture dcf.wisconsin.gov
    12. 12. <ul><li>Unidesk </li></ul><ul><li>Allows us to effectively personalize, package, and provision desktops, improve overall manageability, and provide significant storage savings, all without compromising the underlying solution. </li></ul><ul><li>C: Drive is compiled at boot time, consisting of independent OS, App, and Personalization layers. </li></ul><ul><ul><li>All layers are independent </li></ul></ul><ul><ul><li>OS and Application layers are shared (storage savings) </li></ul></ul><ul><ul><li>User Persona persists through updates </li></ul></ul><ul><ul><li>Snapshot/Restore individual layers or the entire desktop </li></ul></ul>dcf.wisconsin.gov
    13. 13. Inside Unidesk Layering It’s All About the Layers dcf.wisconsin.gov
    14. 14. <ul><li>Planning & Design – Steps to VDI Success </li></ul><ul><li>Know your users </li></ul><ul><ul><li>Create a set of tiers that users fit into, and assign a weight to each tier </li></ul></ul>dcf.wisconsin.gov Tier Weight Typical Workload Information Workers 70% Child Welfare App (Web Based), Outlook, Excel, Word Power Workers 20% Above, plus custom apps, development suites (i.e. IT Staff, Finance, Developers) Admin Workers 10% Management and Directors, requiring basic applications, but lowest downtime
    15. 15. <ul><li>Sizing </li></ul><ul><li>Next, assign performance characteristics to each tier </li></ul><ul><li>Based on a number of users and this breakdown, we can reasonably plan hardware resources </li></ul><ul><li>For us, this was a journey from estimating to actual </li></ul>dcf.wisconsin.gov Tier vRAM vCPU Disk I/O (non-idle) Information Workers 1.5 GB 1 ~12-15 IOPS Power Workers 2-3 GB 1-2 ~18-22 IOPS Admin Workers 2 GB 1 ~12-18 IOPS
    16. 16. <ul><li>Estimating Hardware </li></ul><ul><li>Conservative Numbers for Budgeting </li></ul><ul><ul><li>Don’t forget about: </li></ul></ul><ul><ul><ul><li>Virtualization overhead </li></ul></ul></ul><ul><ul><ul><li>Infrastructure supporting VDI </li></ul></ul></ul><ul><ul><ul><li>N+1 capacity, etc </li></ul></ul></ul>dcf.wisconsin.gov CPU Memory Disk Network ~2-4 Desktops per CPU core ~.5-1 Desktop per 1GB of Physical Memory ~7 Desktops per 15k RPM hard disk spindle ~3 Desktops per 1Mb of WAN bandwidth
    17. 17. <ul><li>Current Usage Statistics </li></ul><ul><li>~350 Desktops with over 65% user concurrency </li></ul><ul><li>Plan to roll out an additional 600 desktops this year </li></ul><ul><li>A single gold image </li></ul><ul><li>~50 Application layers </li></ul><ul><li>Average of 67 desktops per blade </li></ul><ul><li>Serious storage savings </li></ul><ul><ul><li>i.e. Savings for 53 desktops running on a single CachePoint </li></ul></ul>dcf.wisconsin.gov
    18. 18. <ul><li>Executing Desktop Virtualization </li></ul><ul><li>Research, research, research… </li></ul><ul><li>September had to be used for testing and optimization </li></ul><ul><ul><li>Over 600 staff and partners to be moved in November </li></ul></ul><ul><ul><li>DCF infrastructure had to be production ready by October 15th. </li></ul></ul><ul><li>Integrated design from the desktop to the data center </li></ul>dcf.wisconsin.gov
    19. 19. <ul><li>VDI in a Mobile Client </li></ul><ul><li>Roaming Thin Client is what we needed… </li></ul><ul><li>How did we do it? </li></ul><ul><li>Why did we choose to use this method? </li></ul><ul><ul><li>Compressed timeline </li></ul></ul><ul><ul><li>Guaranteed success was required </li></ul></ul><ul><li>Post implementation included a large refresh project that allows opportunity to adjust </li></ul>dcf.wisconsin.gov
    20. 20. <ul><li>Lessons Learned </li></ul><ul><li>Extensive planning - Understand your users </li></ul><ul><li>Plan for some sort of persona management tool </li></ul><ul><ul><li>Unidesk packages the OS, Apps, and Persona </li></ul></ul><ul><li>Take a holistic approach to Application Inventory </li></ul><ul><ul><li>Unidesk Layer </li></ul></ul><ul><ul><li>ThinApp </li></ul></ul><ul><ul><li>Installed on Gold Image </li></ul></ul><ul><li>Dedicate trained virtualization staff to your Helpdesk </li></ul><ul><li>Implement in small groups and monitor constantly on all levels </li></ul><ul><li>Use direct user training and interaction within the rollout </li></ul><ul><li>Ensure you have immediate triage ability with staff as they face change </li></ul><ul><li>Keep your user in mind </li></ul>dcf.wisconsin.gov
    21. 21. <ul><li>The Achievement </li></ul><ul><li>Meeting Operational Requirements </li></ul><ul><ul><li>Scalability Highly scalable </li></ul></ul><ul><ul><li>Flexibility and Agility Quick provisioning and extensibility </li></ul></ul><ul><ul><li>Longevity Designed for the future </li></ul></ul><ul><li>Customer Service Customer-centric design </li></ul><ul><li>Total Cost of Ownership ROI driven </li></ul><ul><li>Highly connected workforce (internal and external) Anytime and anywhere access </li></ul><ul><li>Establishing COOP solutions Without costly redundant equipment & environments </li></ul>dcf.wisconsin.gov
    22. 22. Thank you.
    23. 23. Layering: The Key to VDI Success
    24. 24. Unidesk: Desktop Layering Innovation C:
    25. 25. The Best of Persistent & Non-Persistent VDI Persistent: custom for each user Non-persistent: stateless and managed by IT
    26. 26. Unidesk Topology Unidesk Management Appliance Virtual appliance serves GUI, maintains policy & configuration Administrator Unidesk Master CachePoint Virtual appliance stores common layers Unidesk CachePoint Virtual appliance stores only the layers need by desktops it hosts End Users Personalization Layer Backups Regular backups of desktop personalization layers for recovery purposes Unidesk Virtual Desktops Unidesk-composited desktops hosted on existing VMware infrastructure
    27. 27. Demo: Unidesk and VMware View in Action Copyright © 2010 Unidesk Corporation. All Rights Reserved. www.unidesk.com
    28. 28. VMware View – Enabling manageability and mobility like never before
    29. 29. Modernizing the Desktop – A Managed Service Model Persona Applications Operating System Centralized Management Desktop Delivery Modern Desktop
    30. 30. Modernizing the Desktop – VMware Vision Mobile Desktop Mac Thin Client Offline iPad Desktop Cloud <ul><li>Cloud Desktop Management </li></ul><ul><li>Image Management </li></ul><ul><li>SLA </li></ul><ul><li>Provisioning </li></ul><ul><li>Maintenance </li></ul><ul><li>Policy </li></ul><ul><li>Security </li></ul><ul><li>Cloud Desktop Infrastructure </li></ul><ul><li>On Demand Resources </li></ul><ul><li>Availability </li></ul><ul><li>Scalability </li></ul><ul><li>Performance </li></ul>vCenter – Policy-based Management & Automation vSphere – Platform for Cloud Infrastructure View – Desktop Computing via Cloud OS Apps Persona Personalized Access across Devices Desktop Application Portal
    31. 31. VMware Partner Unidesk Shares the Same Vision “ Dynamic desktop composition represents an advance in client management technology and can accelerate growth for virtual desktops where the ability to personalize the user experience is needed. Unidesk’s layering technology is an innovative example and we look forward to collaborating to modernize the desktop experience for VMware View and VMware vSphere customers.” - Scott Davis, CTO, Desktop Virtualization, VMware
    32. 32. Customers Modernizing More Desktops with View and Unidesk
    33. 33. Overview of the View Architecture <ul><li>Key Components </li></ul><ul><ul><li>Built on reliable vSphere platform </li></ul></ul><ul><ul><li>vCenter Server </li></ul></ul><ul><ul><li>View Connection Server </li></ul></ul><ul><ul><li>View Security Server </li></ul></ul><ul><ul><ul><li>Now supports PCoIP! </li></ul></ul></ul><ul><ul><li>View Client </li></ul></ul><ul><ul><ul><li>Offline Client available for special use cases </li></ul></ul></ul>vCenter Centralized Virtual Desktops Microsoft Active Directory View Connection Server View Security Server View Client PCoIP DMZ
    34. 34. <ul><li>View Security Server Security Features </li></ul><ul><ul><li>Native support for PCoIP added in View 4.6 </li></ul></ul><ul><ul><li>Recommended for DMZ deployment or environments with separated networks </li></ul></ul><ul><ul><li>Only authenticated users can gain access through it </li></ul></ul><ul><ul><li>Can ensure that virtual desktop access is only possible for authenticated users. The only desktop protocol that can enter the data center is on behalf of authenticated users </li></ul></ul><ul><ul><li>Ensures users can only access resources (virtual desktops) they are authorized to access </li></ul></ul><ul><ul><li>Zero administration </li></ul></ul><ul><ul><li>Offloads the HTTPS processing and all desktop protocol traffic away from the View Connection Server </li></ul></ul><ul><ul><li>Multiple View Security Servers are used for scalability and HA with loadbalancers </li></ul></ul><ul><ul><li>Support for RSA SecurID and smartcards </li></ul></ul>View Security Server
    35. 35. ThinApp – application virtualization <ul><li>Features </li></ul><ul><ul><li>Decouple applications and data from OS </li></ul></ul><ul><ul><li>Agent-less architecture </li></ul></ul><ul><ul><li>Wide platform and application support </li></ul></ul><ul><ul><li>Plug into existing application management tools </li></ul></ul><ul><ul><ul><li>Deliver ThinApp virtual applications as Unidesk layers for automated deployment, version control, and rollback </li></ul></ul></ul><ul><li>Benefits </li></ul><ul><ul><li>Simplify Windows 7 migration </li></ul></ul><ul><ul><li>Enable application mobility and easier access </li></ul></ul><ul><ul><li>Minimize the number of OS images managed </li></ul></ul><ul><ul><li>Eliminate application conflicts </li></ul></ul><ul><ul><li>Enable the use of multiple versions of the same applications </li></ul></ul>Operating System Application Application Operating System VOS VOS Application sandbox Application sandbox App Files App Files
    36. 36. vShield Endpoint Integration <ul><li>Improve performance and effectiveness of existing endpoint security solutions </li></ul><ul><li>Offload AV activity to Security VM (SVM) </li></ul><ul><li>Eliminate desktop agents and AV storms </li></ul><ul><li>Enable comprehensive desktop VM protection </li></ul><ul><li>Centrally manage AV service across VMs with detailed logging of AV activity </li></ul><ul><li>Partner Integration through EPSEC API </li></ul>vShield Endpoint Included with the VMware View 4.5 Premier bundle VM Persona APP OS Kernel BIOS VM Persona APP OS Kernel BIOS VM Persona APP OS Kernel BIOS SVM OS VMware vSphere AV Hardened Introspection
    37. 37. Thank You! <ul><li>Q&A </li></ul><ul><li>Please feel free to contact the speakers directly : </li></ul><ul><ul><li>Maytee Aspuro, State of Wisconsin, [email_address] </li></ul></ul><ul><ul><li>Christopher Luter, State of Wisconsin, [email_address] </li></ul></ul><ul><ul><li>Timothy Curless, State of Wisconsin, [email_address] , Twitter:@timcurless </li></ul></ul><ul><ul><li>Ron Oglesby, Unidesk, [email_address] , Twitter:@RonOglesby </li></ul></ul><ul><ul><li>Chris Fox, VMware, [email_address] </li></ul></ul>