Benefits of upgrading to XenApp 5 Platinum Webinar

Loading...

Flash Player 9 (or above) is needed to view presentations.
We have detected that you do not have it on your computer. To install it, go here.

0 comments

Post a comment

    Post a comment
    Embed Video
    Edit your comment Cancel

    Notes on slide 1

    .

    The Password Manager Plugin is the software users need on their client devices to act as an intermediary between users and their applications. When a user tries to access an application that requires authentication, the agent software intercepts the application’s request for authentication, finds the correct credentials, and submits them to the application. In addition, the Password Manager Plugin can provide users with a wide array of features. Which features the users actually receive is determined by the administrative settings you make in their user configurations. Password Manager Plugin features include:Notification area icon - The Password Manager Plugin’s notification area icon provides access to the Logon Manager and other Password Manager functionality, such as security question registration, pausing, and online Help.Logon Manager - TheLogon Manager provides a user interface where credentials can be created, viewed, edited, and deleted. Users can also conduct security question registration and access online Help from the Logon Manager. The File menu provides the user with much of the available access: The New Logon command allows users to add new Windows-, Web-, or host-based application credentials to Password Manager.The Properties command gives the user access to properties associated with the credentials for the specified application. From there, the user can change the password, user ID, and other logon information.The Delete command, when invoked, removes users’ credentials for the selected application from Logon Manager.The Copy command provides a duplicate set of the selected credentials that the user can then edit to create multiple sets of credentials for single applications.Other commands you can give users access to include:The Reveal Passwords command, from the View menu, allows the user to display the passwords of the applications listed in Logon Manager. Note: Password policy settings for revealing passwords overridethis command. If you do not want users to reveal the password for an application, be sure to set the password policy to prevent this.The Security Question Registration command, from the Tools menu, gives the user the option to restart the Security Question Registration wizard and provide new answers to the security questions.The Account Association command, from the Tools menu, allows the user to create an association between accounts on different domains. By using this feature, the user’s credentials are synchronized, with password changes carried across domains.Automated new logon setup - Users can set up new logon credentials quickly using the New Logon wizard. The Password Manager Plugin detects when an application or Web site requests logon information. If the user’s credentials are not already stored in Password Manager, the New Logon wizard automatically appears, offering to store them.User mobility - The Password Manager Plugin supports remote and mobile users. By obtaining a license before disconnecting, remote users can access their credentials when they are disconnected from the corporate network. Mobile users can move from one computer to another and multiple users can securely share one workstation.

    A user with a client device logs on to XenApp and a session is established.At successful logon, the SmartAuditor Driver begins recording session data to temporary memory. The SmartAuditor Agent sends information about the session to the SmartAuditor Policy Console and asks if the session should be recorded.The SmartAuditor Policy Console returns a reply that can be either “Record Session” or “Do Not Record Session.” The SmartAuditor Driver begins sending buffered session data to the SmartAuditor Agent. Data collected includes screen updates, mouse, and session information.The SmartAuditor Agent sends the session data to the SmartAuditor Server (Storage Manager), which creates a session recording on disk. The SmartAuditor Server also writes information related to session metadata to the database catalog. This process continues until the session ends. Recorded sessions stored on the SmartAuditor Server can be retrieved and reviewed using the SmartAuditor Player.

    TCP Flow control – while TCP does inherently include flow control, it is very inefficient as discussed in more detailed slides to follow. Repeater optimizes TCP flow control and accelerates the TCP connection to increase transfer rate, institute more consistent performance, and reduce total connection duration.Multi-level compression – Depending on the conditions, disk-based, memory-based, .zlib, or LZS (proprietary) compression may be used. While compression may be configured per service class, the Repeater will, by default, automatically select the best compression method to used based on the connection, the link, and other conditions.Application Protocol optimization – Repeater optimizes application layer protocols (Layer 7 OSI) by simulating challenge response on the LAN, packaging up responses into single payloads to reduce round trips, reading ahead on LAN during WAN transmission and avoiding the compression of Metadata which can reduce performance. What’s included with XenApp? A license to use the Repeater client (Citrix Accelerator) is included with each XenApp Platinum ccu license. Customers must purchase the appliance separately. The solution enables WAN optimization from the LAN network to the client machine. For network-to-network optimization, additional Repeater appliances may be purchased and placed at the boundaries of each LAN pointing to each other over the WAN link. High availability pairs are available.High Availability – Configured using 3 addresses (2 for management and 1 virtual IP address. High Availability is configured in the management console of each Repeater. See “Configuration Setting” then “High Availability” in the console of each Repeater. You will need the Virtual IP address as well as the serial number of each Repeater to configure the HA pair.

    NOTE: since traffic cannot bypass the appliance, the Repeater will only accelerate TCP connections that initiate from another Repeater. This check for another Repeater is done for every connection and is auto-discovered during the initial SYN, SYN+ACK, ACK 3-way TCP handshake at connection initiation. Repeaters insert 19 bytes into the TCP Options field of the SYN and SYN+ACK packets to advertize their existence on the link. Only when this option is detected will the Repeater appliances apply acceleration. Otherwise, the packets simply pass through unchanged. If a Repeater is no longer available, active connections should reset themselves using TCP protocols. This TCP Option setting is the reason that the Access Gateway Enterprise Edition cannot interoperate with a Repeater. It strips the TCP Option needed for the Repeater appliance and the Repeater client to accelerate traffic on the WAN link. The same is true for Appliance-to-Appliance connections. The Access Gateway cannot be deployed on the LAN-side of the Repeater because it cannot accelerate encrypted traffic.

    TCP Window size – Repeater increases TCP Windows size from 64KB max to 8MB (RFC 1323) to reduce transmission time. According to Wikipedia - For more efficient use of high bandwidth networks, a larger TCP window size may be used. The TCP window size field controls the flow of data and is limited to between 2 and 65,535 bytes. Since the size field cannot be expanded, a scaling factor is used. The TCP window scale option, as defined in RFC 1323, is an option used to increase the maximum window size from 65,535 bytes to 1 Gigabyte. Scaling up to larger window sizes is a part of what is necessary for TCP Tuning.Fair-queuing – Each session get’s it’s own queue on the appliance. All sessions optimized in turn and treated equally.NOTE: If a packet gets lost, short distance sessions recover quickly but long distance sessions recover very slowly. Hence, preventing packets loss and optimally managing flow control is extremely important to optimal network performance over long distance WAN’s in particular.

    ICA Acceleration is a new feature that automatically accelerates ICA traffic between the XenApp servers and Repeater 5/Branch Repeater 1.5 devices. Other than installing a hotfix on the XenApp servers, there is nothing that needs to be done on the XenApp side to enable this functionality. Please note that this is only applicable to CPS 4.5 and XA5/2003 at this time.

    CIFS/SMB – Common Internet File System (commonly paired with Server Message Block). This is used by Application Streaming, hence, Repeater accelerates Application Streaming SMB traffic when used for Local Application Delivery.MAPI – Outlook-ExchangeNFS – Network File SystemFTP – File Transfer ProtocolHTTP – Hyper Text Transfer Protocol. This is used by Application Streaming, hence, Repeater accelerates Application Streaming SMB traffic when used for Local Application Delivery.Others – NNTP, SIP, SSI, DNS, Gopher, NTP, DHCP, SMPP, SMTP, SNMP, Telnet…Simulation – What is meant by simulation is that before the Repeater transports application layer packets across the wire, it tries to respond to the initiator to gather as many packets as possible. It then takes the responses from the initiator (the client) and sends them over the wire as a single payload. The Repeater on the Remote LAN then uses the payload contents to respond to challenges made by the resource server. This reduces the number of round trips and reduces latency. Combines with TCP flow control and compression, Application Protocol Optimization can significantly reduce connection times and round trips while increasing WAN performance.In the example given, we analyze a CIFS transaction in two scenarios… one where there is no Citrix Accelerator Client or Repeater present and one with the Repeater solution. The CIFS over WAN does not include the Repeater Acceleration. It is a simple CIFS transaction to open a file. If this transaction were handled over the WAN, it would require 4 round trips. Using Repeater to perform Application Protocol Optimization would reduce this transaction down to 1 round-trip. Thus reducing the impact of latency. Obviously, latency cannot be overcome, but it’s impact can be better managed. This is the concept behind the Repeater solution. Other transactions such as read or write transactions would be handled accordingly. In fact, in read-write transactions, the Remote Repeater combines challenge-response and data payloads into one packet and send them over the wire. While the packet is traveling across the WAN, the remote Repeater will simulate client receipt of the data in an effort to cajole the resource server into continuing to send information. This maintains a steady stream of data to complete the transaction faster. A session-based queue is managed on both sides to ensure data, communication and response-packet integrity.

    …and Provisioning Services does just that. It changes the game for IT. It does this by streaming workloads on-demand rather than pushing full images onto each target system. There’s a lot of really cool and complex technology under the hood that I could spend an entire day talking about but really the model is quite simple, it’s virtualize, store, and stream.You virtualize a system image by capturing it from a reference system.That image is stored somewhere on the networkAnd then Provisioning Services streams it to any number of target devices. We’re going to walk through a number of use cases, but in all of them, the model stays the same: Virtualize, store, and stream.

    Differential Disk Image Mode is a cache mechanism residing (where the vDisk is or the write-back cache) that saves the machine session information even if the computer (or virtual session) is rebooted. This allows for machine based/end-user customization and data retention for the duration that the base vDisk remain unchanged.

    NOTE: For more information on commonly known ports, visit http://www.iana.org/assignments/port-numbers. Core XenApp ComponentsXenApp WebClient connections – TCP 80/443 (configurable)Server-to-server – TCP XML 80, 8080, 443 (SSL Relay)Management console (partially IMA) – WMI/DCOM 135 (+configurable high port range), IMA-TCP 2513, TCP 80/443 Independent Management Architecture (IMA) Services – TCP 2512, 2513Licensing Service – TCP 27000, 27009 (configurable)Application VirtualizationLocal Application Delivery –Streaming Client to Application Hub (File Server/Share) – HTTP Streaming 80/443 or SMB 445 (depends on setup)Hosted Application Delivery (via Presentation Virtualization) – Management Console (Using IMA) – TCP 2512, 2513Application requests – TCP XML 80, 8080 or 443 (configurable)Access to Applications Virtualized on the Server – ICA-TCP 1494, 2598 (Session Reliability)EdgeSight performance monitoringEdgeSight Plugin to Edgesight Server – TCP 80/443 (Payload and alerts)EdgeSight Web console (non-IMA) to RSCorSvc on EdgeSight Plugin – TCP 9035EdgeSight Plugin internal communication – TCP 9036 (client-side database) NOTE: After EdgeSight 4.5 replaced with IPCEdgeSight database – SQL 1433 (configurable)Active Application MonitoringConsole to Controller – TCP 80Controller to Launcher – 18747Launcher to Controller – 18748Launcher to Presentation Virtualization ServersApplication requests – TCP XML 80, 8080 or 443 (configurable)Access to Applications Virtualized on the Server – ICA-TCP 1494, 2598 (Session Reliability)EasyCall Voice Services –To client – TCP 8443 (PSync)Admin console (non-IMA) – TCP 443LDAP – TCP 389PBX port varies by vendorPSTN = Public Switch Telephone Network (not relevant)Load Testing Services – Console to Controller – TCP 80Controller to Launcher – TCP 18745Launcher to Controller – TCP 18746Launcher to Presentation Virtualization ServersApplication requests – TCP XML 80, 8080 or 443 (configurable)Access to Applications Virtualized on the Server – ICA-TCP 1494, 2598 (Session Reliability)Power and Capacity ManagementAgent to Concentrator – TCP 11168 (Configurable)Service Connection Point (for agent farm discovery) – LDAP 389Concentrator to Database – Microsoft SQL (TCP/UDP 1433)Provisioning ServicesPVS to License Server – Port 27000PVS to Active Directory – LDAP 389PVS to client I/O – 6910-6930PVS to Shared Storage – CIFS/NFS TCP/UDP 3020PVS to Database – Access (JET), Microsoft SQL (TCP/UDP 1433)TFTP – TCP 69PXE – UDP 67/68/4011 (proxy DHCP)DHCP – UDP 67/68/4011 (proxy DHCP)Single Sign-onManagement Console (non-IMA), Plugin or Service to credential storeNetwork File Share Credential Store – TCP/UDP 445 (CIFS) or TCP/UDP 135-139 (NetBIOS)Active Directory Credential Store – TCP/UDP - 389, 636, TCP - 3268, 3269Novell File Share Credential Store – TCP/UDP – 524 Management Console (non-IMA) and/or SSO Plugin to Password Manager Service – TCP-443Secure Application AccessStandard and Advanced Edition of ApplianceClient connections– TCP-SSL 443 (configurable)Advanced Access Control (AAC) to Appliance communication – TCP 80 or 443 (configurable), 9001, 9002, 9005Management Consoleto Appliance (non-IMA) - 9001, 9002, 9005to AAC – IMA-TCP-2513Enterprise Edition of ApplianceTo client – SSL-TCP 443To internal network – SSL-TCP 443, Authentication port (i.e. RADIUS 1812, LDAP 389), Native application ports (i.e. ICA-1494)Management console (non-IMA) – SSH-TCP 22, HTTP(S)-TCP 80/443SmartAuditor – Management (non-IMA) – Use local console on Plugin or on Server.Plugin to Broker (Recording and Policy Check) – TCP 80/443 (configurable)Player to Broker – TCP 80/443 (configurable)Plugin to Server (Metadata and Video)– Microsoft Message Queuing, Default - TCP: 1801 • RPC: 135, 2101*, 2103*, 2105* • UDP: 3527, 1801 (*These port numbers may be incremented by 11 if the initial choice of RPC port is being used when Message Queuing initializes. A connecting QM queries port 135 to discover the 2xxx ports.)Over SSL- TCP 80,443VM Hosted appsWAN Optimizer –Appliance to Appliance – Pass-through native application port (e.g. ICA-1494, HTTP-80, LDAP-389)Management Console (non-IMA) – TCP 80Client to Appliance – TCP 443XenServer virtualization platform –

    Major components of EdgeSight performance monitoring powered by Citrix EdgeSightEdgeSight Plugin – installed on each server in the XenApp farm that will be hosting applications. Sends application usage data back to EdgeSight server on 10-15 minute intervals (configurable)EdgeSight Service and Database – stores monitored information, aggregates data across the farm, and hosts the EdgeSight Web Management Console.Active Application Monitoring Controller – Launches synthetic sessions on client device on a scheduled or manual basis. Also used to edit scripts for use when launching synthetic sessions.Active Application Monitoring Launcher – acts as a user to launch an application on a hosting server. Gathers performance information and relays back to EdgeSight database for aNOTE: For more information on commonly known ports, visit http://www.iana.org/assignments/port-numbers. EdgeSight performance monitoring (powered by Citrix EdgeSight)EdgeSight Plugin to Edgesight Server – TCP 80/443 (Payload and alerts)EdgeSight Web console (non-IMA) to RSCorSvc on EdgeSight Plugin – TCP 9035EdgeSight Plugin internal communication – TCP 9036 (client-side database) NOTE: After EdgeSight 4.5 replaced with IPCEdgeSight database – SQL 1433 (configurable)Active Application MonitoringController to Launcher – 18747Launcher to Controller – 18748Console to Controller – TCP 80Local Application Delivery –Streaming Client to Application Hub (File Server/Share) – HTTP Streaming 80/443 or SMB 445 (depends on setup)EasyCall Voice Services –To client – TCP 8443 (PSync)Admin console (non-IMA) – TCP 443LDAP – TCP 389PBX port varies by vendorPSTN = Public Switch Telephone Network (not relevant)Independent Management Architecture (IMA) Services – TCP 2512, 2513Licensing Service – TCP 27000, 27009 (configurable)Hosted Application DeliveryManagement Console (Using IMA) – TCP 2512, 2513Application requests – TCP XML 80, 8080 or 443 (configurable)Access to Applications Virtualized on the Server – ICA-TCP 1494, 2598 (Session Reliability)Single Sign-onManagement Console (non-IMA), Plugin or Service to credential storeNetwork File Share Credential Store – TCP/UDP 445 (CIFS) or TCP/UDP 135-139 (NetBIOS)Active Directory Credential Store – TCP/UDP - 389, 636, TCP - 3268, 3269Novell File Share Credential Store – TCP/UDP – 524 Management Console (non-IMA) or Plugin to Password Manager Service – TCP-443Secure Application Access (powered by Citrix Access Gateway)Standard and Advanced EditionClient connections– TCP-SSL 443 (configurable)Advanced Access Control (AAC) to Appliance communication – TCP 80 or 443 (configurable), 9001, 9002, 9005Management Consoleto Appliance (non-IMA) - 9001, 9002, 9005to AAC – IMA-TCP-2513Enterprise EditionTo client – SSL-TCP 443To internal network – SSL-TCP 443, Authentication port (i.e. RADIUS 1812, LDAP 389), Native application ports (i.e. ICA-1494)Management console (non-IMA) – SSH-TCP 22, HTTP(S)-TCP 80/443SmartAuditor – Management (non-IMA) – Use local console on Plugin or on Server.Plugin to Broker (Recording and Policy Check) – TCP 80/443 (configurable)Player to Broker – TCP 80/443 (configurable)Plugin to Server (Metadata and Video)– Microsoft Message Queuing, Default - TCP: 1801 • RPC: 135, 2101*, 2103*, 2105* • UDP: 3527, 1801 (*These port numbers may be incremented by 11 if the initial choice of RPC port is being used when Message Queuing initializes. A connecting QM queries port 135 to discover the 2xxx ports.)Over SSL- TCP 80,443WAN Optimizer –Appliance to Appliance – Pass-through native application port (e.g. ICA-1494, HTTP-80, LDAP-389)Management Console (non-IMA) – TCP 80Client to Appliance – TCP 443XenApp WebClient connections – TCP 80/443 (configurable)Server-to-server – TCP XML 80, 8080, 443 (SSL Relay)Management console (partially IMA) – DCOM 135 (+configurable high port range), IMA-TCP 2513, TCP 80/443 nalysis.

    The ability to create a synthetic (scripted) transaction for a XenApp hosted application. The transaction (which might be logging in to an application like word and then logging out or carrying out a full order in SAP) and the steps within the transaction are monitored against pre-determined thresholds and an alert sent when one is breached. This is a really exciting new development is creating true service level alerting in a XenApp environmentCreates a synthetic transaction or script that uses the Citrix ICA headless client to perform a dipstick test of critical application performance. Also supports XenApp Web connectivity monitoring.Example 1: Connect a desktop session to SAP over an international WAN connection to ensure that order-entry time is adequate. Use XenApp Web to enumerate applications. Example 2: Connect a desktop session to a Customer Care application from India over an international WAN connection to ensure that order-entry time is adequate.Scripts are scheduled to run at specified times and from specified locations. SCRIPTS USE PRODUCTION APPLICATIONS AS IF THEY WERE A USER!Administrator must setup remote machines to run test (can use virtual machines). The closer you get to an actual user environment the better the test will be.Alerts are sent if a scheduled test breaches pre-defined thresholds for the synthetic transaction. Alerts are sent by the EdgeSight Plugin on the client to the console and via SMTP (if configured). Alerts may also be triggered if the Active Monitoring test causes the system to cross a pre-determined system-wide threshold.EdgeSight Plugin architecture captures server and session activity at time of breach for triage and root cause analysisThis feature was created using EdgeSight for Load Testing technology. However, it will only work for one session at a time… not for multi-session testing. It is for Active Monitoring vs. Server Sizing and Scalability testing

    For EdgeSight performance monitoring, Citrix will be extending the set of end user experience metrics available for monitoring within EdgeSight to include the full set of ICA channels. With this capability, users will be able to, for example, monitor printing delays in the XA farm, as well as scertain visibility into potential file transfer issues and performance across the XA farm. The set of counters we are looking to include are listed here . If there are other performance counters you think we should be capturing, please let us know.The obvious benefit with ICA client communication reporting is more granular visibility into the PS environment, thus making identifying and solving issues much easier to the XA admin end uder.

    Enterprise Load ManagementWith Load Management, you can optimize server resources throughout your server farm. To accommodate routine application and database maintenance, you can use Load Management to schedule the availability of published applications on your servers. Load Management provides:Maximized system efficiency. Load Management balances published application loads across your server farm based on server or published application load limits set in load evaluators. This feature allows more efficient data flow in your server farm environment.Citrix default load evaluators. Load Management includes two load evaluators that work well in most server farm environments, simplifying your current load configuration without modification until you learn more about Load Management.Customization. Load Management includes a set of rules that you can use to create your own load evaluators, increasing server and published application performance in your server farm.Real-time monitoring. The Load Management Monitor tool lets you view the statistics monitored by your load evaluators after you attach them to a server or published application.Complete List of Available Rules for Load EvaluatorsApplication User Load – Calculates load based on the number of users accessing a specific published application on the attached server. When the number is within the load and high thresholds, Load Management reports a load percentage based on the threshold values. When they exceed the limits set, Load Management reports 100% load.Context Switches – Calculates load based on CPU context switches. A context switch occurs every time the operating system switches from one executing process to another. When the number is within the load and high thresholds, Load Management reports a load percentage based on the threshold values. When they exceed the limits set, Load Management reports 100% load.CPU Utilization - Calculates load based on CPU Utilization. When the number is within the load and high thresholds, Load Management reports a load percentage based on the threshold values. When they exceed the limits set, Load Management reports 100% load.Disk Data I/O – Calculates load based on Disk I/O in Kilobytes. When the number is within the load and high thresholds, Load Management reports a load percentage based on the threshold values. When they exceed the limits set, Load Management reports 100% load.Disk Operations – Calculates load based on the number of disk operations per second. When the number of disk operations per second is within the load and high thresholds, Load Management reports a load percentage based on the threshold values. When they exceed the limits set, Load Management reports 100% load.IP Range – Enables or disables access to a published application based upon whether or not the OP addresses of the clients are within a specified IP address range(s).Load Throttling - Determines load based on user logon operations affecting server performance. If logon is an expensive operation (lots of scripts, etc.) then this should be set to High. To maximize load when one user logs on set to Extreme. This means that only one person can log on to this server at a time and other incoming connections will be denied until the logon operation for that user is complete. This helps to minimize the 9am logon effect where servers become loaded too quickly.Memory Usage – Calculates load based on memory utilization. When the memory utilization is within the load and high thresholds, Load Management reports a load percentage based on the threshold values. When the memory utilization exceeds the thresholds, Load Management reports a full load.Page Faults – Calculates load based on the number of page faults per second. A page fault occurs every time the operating system accesses physical memory that has been flushed to disk.Page Swaps – Calculates load based on the number of page swaps per second. A page swap occurs every time the operating system swaps physical memory to virtual memory on disk.Scheduling – Schedules the availability of selected server or pubished applications. It sets the weekly days and hours during which the server or published application is available to users and can be Load Managementd. For example, you can use this rule to precent access to sensisitve data outside of regular business hours.Server User Load – Allows your load evaliator to calculate load based on the number of users on an attached server. When the number of users is less than or equal to the high threshold, Load Management reports a load percentage based on the threshold value.

    Value proposition Until CPS 4.5, all applications and users were treated equally by CPS and Load Balancing was performed solely on server load. This assumption leads to the following undesirable consequence- A highly critical user such as doctor in a hospital running an important PACS application in the emergency room (over Citrix) in an emergency situation could experience slowness, longer response times and a “jerky” user experience because of CPU spikes caused by normal (or lower) priority ancillary users like front desk staff using standard admin applications on the same server. The idea in UAPLB is to provide the administrator the flexibility to assign higher (or lower levels) of service to users and applications based on their job functions, position within the company or any other such meaningful criteria. Preferential Load Balancing allows the administrator to assign importance levels to applications (when publishing the application) and users (via policies). A user’s session gets an importance level that is a function of who they are and what application they are running.

    When a user attempts to connect to an application, the Citrix XML service us used by the XenApp Web (XenApp Web or XenApp Services) site to query the IMA database for the least loaded server. The most current list of servers is maintained through periodic updates from member servers. Any server with a full load, as determined by the assigned Load Evaluators, will not show up on the Load Management list of available servers. The server with the least load (determined using load evaluators) that is hosting the requested application is sent to the XenApp Web/Service site and an ica file is created and sent to the XenApp Hosted Applications Plugin on the user device. The ica file is then used to connect directly to the server.Notice that the top server was not included in the load evaluation because it does not host the ERP application which the user is trying to access. It is, however, used by the XenApp Web server to communicate to the IMA database for determining the least loaded server.

    NOTE: The example on the previous page is not the same as this one. Note that the second server from the top is at 50% utilization vs. 30% and also that the number of high importance sessions on second and 3rd servers are noted.When a user attempts to connect to an application, the Citrix XML service us used by the XenApp Web (XenApp Web or XenApp Services) site to query the IMA database for the least loaded server. The most current list of servers is maintained through periodic updates from member servers. Any server with a full load, as determined by the assigned Load Evaluators, will not show up on the Load Management list of available servers. The session importance is also calculated. If there is a very high importance session that needs to connect then the system attempts to find a server with the lowest load but also which has fewer high importance sessions on it. In this manner, the system can ensure that the highly important session will not be starved for resources by other high importance sessions on the same server. Because of this, a high importance session may be load balanced to a server with a slightly higher load as shown in the diagram.The server (determined using load evaluators and policies) that is hosting the requested application is sent to the XenApp Web/Service site and an ica file is created and sent to the XenApp Hosted Applications Plugin on the user device. The ica file is then used to connect directly to the server.Notice that the top server was not included in the load evaluation because it does not host the ERP application which the user is trying to access. It is, however, used by the XenApp Web server to communicate to the IMA database for determining the least loaded server.

    You’ve all seen a version of this ‘line of sight’ slide before but it’s worth spending a fair amount of time on it to take a look at the Platinum features and benefits to justify customer investment for specific use cases.Apps and users are getting farther apart and more complex to connect … we’ve been saying that for a while and frankly, it’s true. That’s why a variation of this slide ought to be a lynch pin in any pitch you give to customers. It starts in the ‘delivery center’ with the XenApp ‘delivery controller’ which means…that Platinum allows you to build a enterprise-class, scalable XenApp farm that is highly dynamic, rapidly configurable, and easily managed using single instances of app and server images. With the addition of XenServer, the best virtualization platform for XenApp, Provisioning services and Workflow Studio, we’ve added the capability to literally bring up a XenApp farm in MINUTES, automatically. This is great for DR situations and to ease the complexity of a XenApp migration. We also added features that now allow you to “take budget from other projects” – specifically with reference to Provisioning services and server virtualization. Secure by design has been a staple of XenApp since its inception – centralized hosting of apps keeps data and intellectual property under corporate control. Remote access is another mandatory need where our SSL VPN, password management, and hosted session recording capabilities further strengthen the security of the overall delivery system. Security and compliance quite often go hand in hand – articulating the value of SmartAccess with our SSL VPN solution to allow your customer to control delivering resources based on who is connecting, where they are connecting from and how they are connecting – SSO and Password Mgt allows you to reduce call ctr expenses while increasing customer satisfaction. Something north of 50% of all enterprise employees are in branch offices. Wouldn’t it be great to provide those branch employees corporate HQ style performance? In fact, you can. Branch optimization can cache streamed apps for like-local delivery to branch users and accelerates hosted session traffic to the branch; this is a definite up-sell opportunity to explore. And Platinum includes licenses for the Repeater plug-in giving mobile users a high degree of WAN optimization and acceleration. What’s the most important aspect of this line-of-sight depiction? I contend it’s the end-user! If apps are delivered as a service, the user experience had better be as good as – we like to strive for better than – installed. That’s why we are and will continue to put such a heavy focus on improving the end user experience: with simplified end user interaction selecting and launching apps, with better performance driven by our HDX technologies, with a focus on intuitive usage to minimize training and on boarding, and with tools that allow you to pin point problems and rectify them quickly.Service and application monitoring is a great technology to drive a report writing and data interpretation business practice, which can generally be an ongoing service opportunity since the customer environments change so regularly – creating a cadence here is an opportunity to remain close to the customers’ needsFinally being able to record sessions for compliance reasons is a real need for certain business and governmental departments, and don’t forget that SmartAuditor also allows tech support to properly debug unresolved issues that have been difficult to reproduce.

    Single Sign-on – Password Manager 4.6 SP1EasyCall Voice Services – EasyCall Voice Services 2.1. Appliance sold separately (QSIG or SIP appliance)EdgeSight performance monitoring – EdgeSight for XenApp and Endpoints 5.0Secure Application Access - Citrix Access GatewayStandard 4.5.8, Advanced 4.5, Enterprise8.1. Customer chooses appliance.WAN Optimization - Citrix Repeater 4.3

    Favorites, Groups & Events

    Benefits of upgrading to XenApp 5 Platinum Webinar - Presentation Transcript

    1. Audio information You can use pc audio or dial in using one of the following numbers: NL: +31(0)858880318 BE: +32(0)28080893 US: +1 323 417 4600 Access code: 520-023-960 Benefits of upgrading to XenApp 5 Platinum Edition Martijn Bosschaart Channel Systems Engineer Citrix Systems Netherlands martijn.bosschaart@eu.citrix.com
    2. XenApp components and architecture
    3. Citrix Delivery Center Workflow Studio XenApp XenDesktop XenServer Netscaler Users Apps
    4. Citrix XenApp is… An end-to-end application delivery system for all Windows applications, both client/server and desktop Lowest total cost Best performance Highest security of ownership & scalability
    5. One delivery infrastructure Citrix Delivery Center Citrix Branch Access Receiver Repeater Gateway XenApp XenDesktop XenServer NetScaler Delivery Network
    6. Solutions for all businesses Four editions The only solution to instantly deliver Windows apps to users anywhere with Platinum enhanced security features and powerful tools that enable greater control and visibility of even the most complex environments. Enterprise A robust, enterprise class Windows app delivery solution that is optimized to manage and monitor larger, more complex environments. Advanced A solid and proven foundation to instantly and securely deliver Windows apps to users anywhere with maximum performance. Fundamentals A turnkey solution for small to mid-size businesses to deliver secure, remote access to users anywhere. For a detailed feature matrix, visit citrix.com/xenappcomparativematrix
    7. The value of XenApp Platinum Reduce app management cost by up to 50% Receivers Repeaters Gateways Controllers Service monitoring Branch optimization Secure access Provisioning services SmartAuditor Single sign-on
    8. XenApp network reference architecture Private LAN Users Telephone Images, Video Enterprise Network v-disks archive Storage Video archive, v- Citrix disks, images, appl WAN Users To Account XML Service(s) Branch Repeater ication packages Authority connection brokering SmartAuditor App Hub Provisioning Citrix Receiver Streamed Services with plugins apps Citrix Citrix Enterprise XenApp Web and Service Monitoring Database Access Gateway Repeater Services Site IMA, SmartAuditor, SSL VPN w/ Adv. Service Access Control Update notifications Monitoring, Provisio from Citrix.com XenApp Servers Power & Capacity ning Server, Power Public Switch Telephone Network TS-hosted apps Management & Capacity Management Users PBX Employees, road warriors, Merchandising Server contractors, temps,… Virtual appliance Legend Devices Mac, Windows, Storage connection/file stream Account Authority Linux ,SmartPhones Video data stream EasyCall Hosting Infrastructure User/machine Direct database connection Voice Services accounts, access control, Blade, PC and Locations Proxied monitoring data/metrics Virtual appliance Single Sign-on SSO credential VM Hosted apps Hotel, Home, Small office, … store, profile Key account authority connection management., Remote control connection power management service connection
    9. XenApp: The basics
    10. Dynamic application delivery Server hosted applications
    11. Server hosted application delivery • Application runs on server (Windows or UNIX) • App can be installed or streamed to server 1. Admin profiles app and saves to user accessible • App can be delivered to any device (Windows, Mac, Linux, etc.) file share. Application Profiler 2. User clicks app icon and Citrix Receiver contacts connection broker XenApp Workers App Hub Enterprise Storage Server-hosted apps App Profiles File Share for App Profiles XenApp Web or Services Site 4. User interacts with app 3. Server with least loaded Connection Broker IMA remotely. Screen resources selected to host updates, mouse clicks and user session. App delivered Enterprise Database Citrix Licensing IMA Account Authority keystrokes sent between to server where it executes User accounts, user and server. within isolated environment.
    12. Receiving server hosted applications AUDIO CLIPBOARD ICA has 32 DRIVE virtual TCP ICA PRINTING channels COM VIDEO 2. App Receiver client uses.ica metadeta to create direct connection to server. User peripherals are mapped according to app properties and connection policies. 3. Print and audio streams are 1. User logs on to XenApp Web or redirected to client Receiver, receives app list and clicks to devices. USB open app. Broker obtains connection drives, hard User information and.ica file is created for user. drives, COM ports Server Farm Device and clip board all work as normal and seamlessly. User Audio, Printer, Driv e and other peripherals
    13. Local and offline application delivery • Streams application to users Windows PC (XP, Vista, Windows 7) • App registry and file access is virtualized 1. Admin profiles app and saves to user accessible • App run-time is isolated from OS and other apps file share. Application Profiler 2. User clicks app icon and Citrix Receiver contacts connection broker App Hub Enterprise Storage App Profiles File Share for App Profiles XenApp Web or Services Site Connection Broker IMA 3. App delivered to user device where it is executed within Enterprise Database Citrix Licensing IMA Account Authority isolated environment User accounts,
    14. Single instance management Application virtualization and streaming
    15. “Application virtualization” defined Optimizing an applications run time by isolating it from the host operating system. Traditional installed applications Virtualized applications • Tightly coupled and rigid run-time environment • Loosely coupled environment • Updates installed to each machine • Updates installed once on centralized servers • Potential app • No inter-app conflict compatibility issues Tightly Coupled Loosely Coupled • Centralized data • Decentralized data
    16. 3 steps to application virtualization 1. Profile – package the application to prepare for virtualization 2. Publish – configure the app for hosted or local delivery to users 3. Deliver – stream into isolation environment on target device (server, PC or virtual machine )
    17. Streaming applications Profiler • Stream one package to both servers and clients quickly and on-demand Desktop Administrator • Policy-based streaming control Hosted Application Delivery Stream to server, deliver interface to user • Application healing App Hub • Package versioning (File Share/ WebDAV) (with roll-back and differential updates) • Simple architecture - stream from file share • Stream over HTTP(S) or SMB Laptop Local Application Delivery Stream directly to client machine
    18. Any device, anywhere
    19. XenApp delivers apps to any device, anywhere LAN Users Citrix XML Service(s) App Hub WAN Users Streamed Windows, Mac, Branch Repeater connection brokering apps Linux PC’s Citrix Citrix XenApp Web and Access Gateway Repeater Services Site XenApp Servers SSL VPN w/ Adv. TS-hosted apps Access Control Dial-up, Satellite, DSL, Broadband,3G Thin clients, Kiosks Hosting Infrastructure iPhone, Blade, PC and VM Hosted apps Windows Mobile
    20. What is Citrix Receiver for Windows? • Provides unified client experience • Install, configures, and updates Citrix components in minutes • Auto- detects when SSL login is needed • Delivers mainstream Citrix plug-ins • Online and offline plug-ins (XenApp) • Secure access plug-in (Access Gateway) • Service monitoring plug-in (EdgeSight) • Communication plug-in (EasyCall) • Dazzle plug-in (XenApp) • Acceleration plug-in (Branch Repeater) • 3rd party software via SDK
    21. Reference architecture Citrix Citrix Receiver Merchandising Server Notifications LAN, WAN, Update Notification Service Mobile Users (Citrix.com) Administrative Installers and Reports MetaData
    22. Merchandising Server 1.1 • Central point of control and delivery for Citrix Receiver • Manages and controls plug-in delivery to Citrix Receiver client software on user devices • Notifies administrators of available plug-in updates • Produces administrative reports • Shipped as a pre-configured Virtual Appliance • Imports via XenServer tools • Configured using web-based administration console • Integrates with Active Directory (configured as part of the initial setup) • Other virtualization platforms to be supported in the future releases
    23. Merchandising Server 1.1 administrator console • Web-based console used to • Download plug-in updates • Configure plug-ins • Create Rules • Schedule deliveries and recipients • Access at: https://[ServerAddress]/appliance
    24. Citrix Receiver client software • Plug-in/update installation • Configure informed or auto-install • No admin privileges needed for plug-in install • Minimizes reboots (if needed) • Deployment Considerations • Citrix Receiver install requires local admin privileges • Receiver can be installed or pushed to users
    25. High definition user experience Citrix HDX technology
    26. HDX technology • Cross-product technology for optimizing the user experience • Technologies delivered via XenApp, XenDesktop, Repeater • Key functional areas • HDX MediaStream • HDX 3D • HDX Real-Time • HDX Plug and Play • HDX Broadcast • HDX Intellicache
    27. HDX MediaStream • Leverages client-side processing to render multi-media content • Client connects direct to media or through XenApp server/VM as proxy • Supports variety of media formats: • DIVX, XVID, WMV, MPG, MPEG 4 v2 video • AC3, WMA, MP3, MPEG 1 Layer 3 audio
    28. HDX MediaStream A/V Media Server Transmission Client Resulting Window PLAYER: Receive Acceleration OFF Read, Decompress, Images & Render App with Media Transmitted Media Redirected CODEC: Acceleration ON & Not Decompressed Read, Decompress, & Render App and Raw Media Sent Separately
    29. HDX 3D • Performance optimization for graphics intensive apps • Optimizes performance of 3D and 2D graphics • Features include: • Progressive display • Image acceleration • Browser acceleration • Thinwire • Queueing and tossing
    30. HDX Plug and Play • Auto-maps user environment to apps • Offline apps work natively, like installed • Hosted apps generate map to environment elements (e.g. drive, printers, etc.) • For hosted applications • HDX Plug and Play controlled via policies • Policies applied to user, group, IP, device • Configured in Access Management Console and Advanced Configuration Tool
    31. HDX Broadcast • Optimizes reliability and performance of hosted apps • Features include: • Adaptive TCP flow control • Adaptive compression • Adaptive protocol acceleration • Instant mouse and text feedback • Auto-client reconnect • Virtual channel bandwidth control and prioritization • Session reliability • Bandwidth estimator
    32. HDX IntelliCache and WAN Optimization • Optimizes performance and network utilization for multiple users • Feature include: • Persistent object cachine • Supercache • Branch caching for hosted apps • Branch staging for streamed apps
    33. The Platinum Features
    34. Secure application access with Access Gateway Platinum Feature
    35. What is Secure application access? • Refers to Citrix Access Gateway • Manages access at the application level • Enterprise Edition 9.0 • Policy-based sense and response • Advanced Edition 4.5 (with Hotfix 4) • Controls access by user, device or network • Standard Edition 4.6 • Restricts actions like print, save and cut/paste • Simplify access while maintaining security • Select appliance to fit your environment • Access apps securely from anywhere • Licenses included in XenApp Platinum Edition • Full VPN access to authorized users • Additional licenses may be purchased • Flexible and extensible end-point analysis • Business Continuity options available
    36. Architectural overview 2. Secure Application Access provides granular access control 1. User connects with Citrix Receiver and 3. Enables access to all XenApp Secure application components as well as any access Plugin network resources Enterprise Edition (Advanced Access Control built-in) XenApp Farm Advanced Edition Advanced Receiver for Web Access Control User Devices App Hub Standard Edition (no Adv. Access Control) Other Network Resources
    37. Secure application access - SSL VPN • Multiple virtual VPN servers enable multiple access points in 1 appliance 7000, 9000, 9000 FIPS, 10000 series • All traffic tunneled via SSL 443 (Enterprise Edition) • Compression engine optimizes bandwidth usage • Policy-based controls enable Advanced Access Control 2000 series (Advanced and Standard Edition)
    38. How advanced access control works What type of What & how resources Who is connecting? connection? are accessed? Web and File Which User VPN Session Servers Access Competing VPN’s stop here Network Access Portal Page What Device Receiver for File Transfer Web Authorization What Authentication Endpoint Analysis Session Policy Authorization Policy Authentication Policy Traffic Policy
    39. Single sign-on Platinum Feature
    40. What is Single Sign-On? • Centrally stores application passwords in data center • Enforces stronger password policies • Auto-creates strong passwords • Provides self-service account unlock and password reset • Adds password expiration to legacy apps • Included in Platinum Edition only • Add-on licenses available for other XenApp editions • Optional desktop licenses available for client-side single sign-on
    41. 4. SSO service used for credential Architectural overview provisioning, data integrity, credential synchronization, key management, and account self service. 1. User connects to 2. If user forgets 3. Password Manager Plugin application virtualized password, Self-service on server detects app login on server Password Reset is request and asks user to available on XenApp store password or retrieves Active Directory used for: Session authentication Web site. it from credential store. Single Sign-on credential store Single Sign-on Password Manager Service XenApp Farm with Password Manager Plugin Receiver for Web User Devices Application Hub SMB or Web File Share
    42. Password Manager console • User configuration • Application definition • Password policies • Identity verification
    43. Password Manager plugin • Taskbar icon • Automated new logon setup • Logon Manager • Add new logons • Edit, copy, or delete credential • Reveal credentials • Re-register security questions • Credentials can be made available offline
    44. User experience • Auto-senses credential fields • Supports Terminal/Mainframe, Windows and Web applications • Passwords do not traverse Internet except for first login • Automatically changes passwords so they never cross Internet again • Adds password expiration to applications missing the feature
    45. Self-service password reset • Integrates into XenApp Web with a simple checkbox • Enables user to reset or unlock their password • Create a custom questionaire to challenge users prior to taking action • With add-on licenses for offline use, integrates into Windows logon
    46. User Auditing with SmartAuditor Platinum Feature
    47. What is SmartAuditor? • Session recording and playback technology for: • Monitoring activity involving sensitive data • Recording administrator screens to video log for change management • Keeping a record of activities for litigation support • Troubleshooting user issues • Available in Platinum Edition only
    48. Capturing session activity with SmartAuditor 1. User accesses virtualized applications running on XenApp 2. SmartAuditor agent buffers session while it checks with 2 SmartAuditor server whether session should be recorded 3 SmartAuditor 3. Agent commits buffer and begins recording session Server 4. Metadata and recording sent to SmartAuditor server Metadata and recording stream 1 4 XenApp Client XenApp servers with SmartAuditor Agent
    49. SmartAuditor playback Advanced search on Archive search metadata and annotations Organize recent and favorite recordings Recordings appear just as if camera is pointed Access live or at users screen completed recordings DVR-like controls for easy video traversal View recording metadata Timeline with bookmark Bookmark and and annotation annotation information capabilities
    50. Wan Optimization with Repeater Platinum Feature
    51. WAN optimization powered by Branch Repeater • Optimizes network performance with: • Adaptive TCP flow control • Adaptive compression • Adaptive protocol acceleration • Traffic prioritization and QoS (includes ICA-aware QoS) • What you need: • 1 x acceleration plugin CCU per XenApp Platinum ccu license • Appliance(s) sold separately • Repeater appliance required in datacenter to host user connections • Branch Repeater appliances can be used to accelerate branch communications • High availability pairs available
    52. Branch Repeater architectural overview To Account Authority and Enterprise WAN connection Applications User devices with Optional Citrix Receiver and Branch Repeater Internet connection online, offline, and Optimized link accelerator plugins Citrix Branch User Repeater XenApp Farm User devices with Application Hub Citrix Receiver and File Server Share, online, offline, secure Access Gateway Web Server or Web access, and accelerator Citrix Receiver Directory plugins for Web Mobile User Best Practices: All link traffic passes through Repeater Traffic cannot bypass appliance PERFECT for accelerating streamed applications NOTE: Access Gateway may be deployed in one or two arm Acceleration works with all editions
    53. Adaptive TCP flow control Shorter Immediate Constant connection time start transmit rate • TCP does not know link bandwidth • Send rate starts slow and increases with each round trip • If packet lost, send rate cut by 50% and begins increasing again Repeater Connection X X X X X X X X X X • If packet lost, short distance sessions recover quickly but long distance sessions recover very slowly PERFORMANCE (Mbps) • Repeater controls TCP flow between LAN and client X • Communicates using same IP and port as original connection X • Accelerates traffic between client and appliance X • Disables “slow-start” TCP flag for immediate transmission boost X X • Sends acknowledgement so server keeps sending TCP packets X X X X • Creates LAN queue to reduce and manage WAN packet loss X X X • Auto-adjusts window size up to 8MB to reduce transmit time TIME (Milliseconds) • Auto-adapts to changing network conditions for efficient flow • Ensures fair-share by managing a per-connection queue LAN connection WAN Short distance WAN Long distance
    54. Adaptive compression Sensing real-time network and traffic conditions • First pass compression • In L2 cache and memory Disk • Various algorithms (ZLIB, LZS) (3500:1) • Byte Caching Access Time DRAM (300:1) • In memory or on disk Cache • De-Duplication • Across workflows • Across applications • Across users History Length
    55. Adaptive compression Compression Compression History History A Small Token Replaces Thousands of Bytes
    56. XenApp acceleration Branch caching for hosted applications (HDX IntelliCache) • Accelerates ICA traffic across WAN (between two appliances) • Compression ratios are now in the 4:1 to 6:1; previously 2:1 to 3:1 • Adaptive compression based on current network conditions • Print time for PDF documents on 85% utilized WAN reduced up to 38% • Uses bit caching to reduce ICA traffic over WAN • Support for XenApp 5 • Works with server-hosted apps on Presentation Server 4.5 and XenApp 5 on WS 2003 x86 • Works with VM Hosted apps on XenApp 5 on Windows XP, Vista, 7 (beta) • 64-bit and Windows Server 2008 support planned for future releases • Requires two Repeater appliances and XenApp Hotfix Rollup Pack 4; Also see CTX119036 • Supported on XenApp in English, Spanish, French and German languages
    57. XenApp acceleration Branch staging of streamed applications (HDX IntelliCache) XenApp Application Profiler File Share Branch Users (Application Hub) WAN Branch Repeater
    58. Example: CIFS over WAN Adaptive protocol acceleration 250ms Open file? 125ms WAN Latency Which file? roundtrip thisfile Who are you? x4 • CIFS/SMB (File Sharing) 1000ms Jane User Password? OpenSesame OK, it’s opened? • MAPI (Outlook-Exchange) NEW! WAN-based user device • HTTP, FTP, NFS • Acceleration plug-in combines messages Acceleration plugin Repeater into single payload to reduce round trips Resource Server • Maintain packet and data integrity on both sides of WAN • Increase TCP Window size to reduce round trips Combine responses Simulated into 1 payload (e.g. challenge- • Improve payload efficiency through compression file, user, password) response Simulated challenge- response roundtrip OK, it’s opened 125ms Latency OK, it’s opened Example: CIFS with Repeater
    59. Traffic prioritization and QoS Without Repeater With Repeater 20% Interactive ICA Bulk Transfers 20% Recreational 1.5 Mbps Recreational Interactive ICA 60% Bulk Transfers ICA-aware QoS is only applicable to the out-going link of a Repeater appliance (for all accelerated traffic including that to Accelerator plugins)
    60. Single instance management with Provisioning Services Platinum Feature
    61. Traditional system imaging and patching model Push Patch Repair • Time • Time • Slow rollback consuming consuming • Poor quality • Overbuilding • Error prone control with dedicated servers
    62. The Provisioning services model Virtualize Store Stream • Create a virtual • Store the • Stream workload network image workloads to image: on a network target systems OS, Apps and storage device efficiently and Config on-demand
    63. Types of vDisks Image Mode Description Data Handling Best for… Single shared vDisk image to No run-time changes saved; Standardized XenApp hosting Standard provision many devices Reboots to clean state servers and VM’s Run-time changes saved Highly personalized Private One vDisk per target device back to vDisk XenApp hosting VM’s When XenApp hosting server Differential Single shared vDisk image to Run-time changes saved to image standardization is needed Disk provision many of devices server-side write-back cache but where base image requires additional unique configuration
    64. Standard Image Mode • Single vDisk delivered to XenApp servers • Run-time changes are not written back to base vDisk • On reboot, clean image streamed to XenApp servers CIFS/NFS TCP/UDP 6910-6930 3020 Provisioning Network Storage Services v-disks, images Enterprise Database XenApp Servers Provisioning Services Physical or Virtual
    65. Service Monitoring with EdgeSight Platinum Feature
    66. What is Service Monitoring? • Provides user-centric view of host and local application performance • Proactively monitors performance • Understand performance trends/bottlenecks • Improve support efficiency • Deliver a better overall end user experience • Included in Platinum Edition only Business Users IT Systems • Add-on licenses available for other editions Client-Server Apps App Infrastructure Web Apps Desktop Apps Networks Servers Databases PC Systems
    67. Service Monitoring Architecture Administrator accesses EdgeSight web console to monitor performance EdgeSight Plugin constantly monitors application activity on server and Administrator uses controller on across ICA connection server and launcher installed on client to periodically test real-time performance over WAN with EdgeSight performance synthetic transactions monitoring Service & DB Administrator/ IT Operations XenApp Farm XenApp Web and Services Site 3rd party Application Back-endand Database
    68. Web based administration console • Realtime Farm monitor and dashboard •Plan and manage capacity with historical reporting •User and device troubleshooter • Configure the entire Edgesight environment
    69. Metrics Captured – Too many to count Application Client Version/Type Login time Program Enumeration Client Connections # Logins Neighborhood Duration credential receipt CPU Utilization Launch page web server duration Audio Input/Output server duration Drive Mapping Printer input/output Avg. Active Server Duration Memory usage Sessions Published app Duration – Session Name resolution Avg. Inactive duration Reconnect Sessions Drive Input/Output enumeration time ICA Session Printer creation Avg. Client server duraton Session creation Startup Duration compression time ICA Session line Peak concurrent Avg CPU (%) sessions SpeedScreen speed bandwidth Avg ICA Round Peak CPU, input, Trip Time ICA File download AND MANY duration bandwidth, latency, Average Input login time, MORE… Bandwidth Used Many metrics not specific to XenApp are also captured
    70. Active Application Monitoring 1. Admin kicks off synthetic session remotely or configures it to run on a schedule 2. Synthetic sessions run from local and remote machines and use production apps. • True Service-level alerting 3. Performance data sent to EdgeSight performance monitoring database • Create scripted transactions representative of real user activity 4. If service level threshold breached • Run simulated user on-command or on a schedule alert sent to EdgeSight console • Monitor responsiveness of production applications in real-time • Alert if responsiveness declines below service-level thresholds EdgeSight performance Administrator monitoring Service & DB or Support person (or scheduled task) XenApp Farm ! XenApp Web and ! Services Site Application Back-end
    71. Full ICA Channel Monitoring • Full ICA channel Monitoring • Performance counters captured • Printer, Drive and Video • Session Compression • Session Line Speed • Input and Output Audio • Input and Output HDX Broadcast Data Channel Bandwidth (SpeedScreen) • Input and Output Drive Bandwidth
    72. Preferential Load Balancing Platinum Feaure
    73. Load management for server hosted applications Enterprise Load Management Preferential Load Balancing • New sessions routed based on server load • Available in Platinum Edition only and system-centric rules • New sessions routed based on • Finds least loaded server according to load session importance evaluators and then routes session • Session importance acts as an additional • Application user load load evaluator when routing sessions • CPU utilization and memory usage • Disk data I/O • Policies control session importance and can • Disk operations be assigned to IP, client name, server or user • IP range and scheduling • Works with CPU Management to partition • Load throttling server resources after user has connected • and more…
    74. Preferential load balancing (PLB) and Who and what is critical? PLB let’s you specify the CPU management for hosted apps critical path to meet SLA’s • Ensure high performance for critical users and applications APPLICATIONS • Available in Platinum Edition • During initial connect • Adds layer of intelligence beyond existing load balancing USERS • Sessions routed based on an “Importance Index” in addition to Load Evaluators • After initial connection • CPU allocation is managed based on session importance • Every app and user combination considered independently SCENARIOS
    75. Enterprise load management 3 Send.ica file with connection 2 information to client Determine least loaded 80% server hosting app 1 Apps: CRM, Office Request ERP Web Server Application 30% Apps: ERP, CRM, Office User 60% Device Apps: ERP, CRM, Office NET-NET – • Physical load calculated using load rules 4 Client connects to least • Physical Svr load = MAX (Load Rule) + (AVG (Load Rules) *.1) loaded server Hosting app • 10% average load acts as a tie breaker if one exists
    76. Preferential load balancing 2 Determine least loaded server hosting app and determine session importance based on 3 assigned policies. Use server load Send.ica file with connection and policies to determine how to information to client route session. 80% 1 Apps: CRM, Office Request ERP Web Server Sessions: 2 high, 13 low imp. Application 50% Apps: ERP, CRM, Office Sessions: 1 high, 9 low imp. 60% High Importance Apps: ERP, CRM, Office User NET-NET – Sessions: 12 low importance • Session importance artificially inflates total server load 4 Client connects to server • Physical Svr load + Total Svr Sesson Importance = Total Svr load with lowest load and fewest • High importance sessions add more load to a server than low high importance sessions. • Server with lowest physical load and fewest high importance sessions is most likely to receive new sessions
    77. Recap and Q&A
    78. The value of XenApp Platinum Reduce app management cost by up to 50% Receivers Repeaters Gateways Controllers Service monitoring Branch optimization Secure access Provisioning services SmartAuditor Single sign-on
    79. Primary functional components of XenApp XenApp Component Technology and Version Application streaming Delivers apps to hosted environments and to local PC’s Hosted application delivery Hosts apps on servers and remotely presents them to users VM Hosted application delivery Hosts apps on central desktops and remotely presents them to users Service monitoring Application-level performance metrics and reports EasyCall voice services Enables applications with click-to-call and conferencing capabilities Load testing services Enables realistic testing of server scalability Power and capacity management Power-cycles hosting servers to minimize idle capacity and power consumption Profile management Reliable roaming profile reconciliation and consolidation Provisioning services Manage the entire XenApp farm from a single server image Single sign-on Application single sign-on for XenApp managed applications. Secure application access* Secure remote access with advanced access control SmartAuditor Session recording and playback for server-hosted applications WAN optimization* High-performance application delivery for branches and remote and mobile users Workflow Studio orchestration Toolkit that enables automation of common tasks * Client use license included. Appliance sold separately. Choose appliance that best fits budget and scalability needs.
    80. Power and capacity management XenApp 5 features by edition Provisioning services Load testing services Provisioning Load testing services Profile management New/Enhanced in Feature Pack 2 Profile management Workflow Studio orchestration New in Feature Pack 1 Workflow Studio orchestration EasyCall voice services Power and capacity management EasyCall voice services Secure application access Load testing services Secure application access Load testing services Profile management Single sign-on (offline included) Profile management Workflow Studio orchestration SmartAuditor Service monitoring Workflow Studio orchestration EasyCall voice services Service monitoring WAN Optimization EasyCall voice services WAN Optimization Workflow Studio orchestration Enterprise Management Enterprise Management Resource Manager, CPU/Memory Resource Manager, CPU/Memory EasyCall voice services VM Hosted application delivery Optimization, Health Assistant, MOM, UNIX apps VM Hosted application delivery Optimization, Health Assistant, MOM, UNIX apps App streaming (offline included) App streaming (offline included) App streaming (offline included) Hosted application delivery Hosted application delivery Hosted application delivery XenServer virtualization platform XenServer virtualization platform XenServer virtualization platform
    81. Questions? Martijn Bosschaart Channel Systems Engineer Citrix Systems Netherlands martijn.bosschaart@eu.citrix.com
    SlideShare Zeitgeist 2009

    + mbosschaartmbosschaart Nominate

    custom

    872 views, 0 favs, 0 embeds more stats

    XenApp 5 Platinum is the most comprehensive Applica more

    More info about this document

    © All Rights Reserved

    Go to text version

    • Total Views 872
      • 872 on SlideShare
      • 0 from embeds
    • Comments 0
    • Favorites 0
    • Downloads 42
    Most viewed embeds

    more

    All embeds

    less

    Flagged as inappropriate Flag as inappropriate
    Flag as inappropriate

    Select your reason for flagging this presentation as inappropriate. If needed, use the feedback form to let us know more details.

    Cancel
    File a copyright complaint
    Having problems? Go to our helpdesk?

    Categories

    Tags

    -->
    What's New

    © 2009 SlideShare Inc. All rights reserved.