More Related Content
Similar to Secure End User Computing in the Cloud_AWSPSSummit_Singapore
Similar to Secure End User Computing in the Cloud_AWSPSSummit_Singapore (20)
More from Amazon Web Services
More from Amazon Web Services (20)
Secure End User Computing in the Cloud_AWSPSSummit_Singapore
- 1. © 2018, Amazon Web Services, Inc. or Its Affiliates. All rights reserved.
David Manu
End User Computing
Amazon Web Services
Secure End User Computing in the
Cloud
- 2. © 2018, Amazon Web Services, Inc. or Its Affiliates. All rights reserved.
Agenda
Service Overview
Why on AWS?
Amazon AppStream 2.0
Demo AppStream 2.0
- 3. © 2018, Amazon Web Services, Inc. or Its Affiliates. All rights reserved.
- 4. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Fully managed, secure virtual cloud desktops running on AWS
Access your desktop anywhere,
anytime, using any supported device
Managed App
Delivery (WAM)
Secure
Simple to Use
Multiple Client Devices
Flexible Hardware
Use Enterprise
Directory (AD)
- 5. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Easily stream desktop applications to
any device running a web browser
Securely deliver instant access to
desktop applications from anywhere
Instant-On Access
Multiple Client DevicesSecure
Scalable
Performance
Managed Service
Easily Integrated
- 6. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Why are customers choosing AWS End User
Computing Solutions?
Amazon WorkSpaces
• Full Desktop Replacement
• Each user = Dedicated WorkSpace (no contention)
• Disaster Recovery and Business Continuty
• Mergers and Acquisitions
• Secure access for contractors
Amazon AppStream 2.0
• Extends your desktop
• Enables secure/3D app workflows
• Online Classrooms / Training
• Virtual Labs
• Business Apps
• Mobilise heavy applications
Pay-as-you go with no long-term commitments, built with the reliability, scale,
and security of the AWS cloud
- 7. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Integration
Microsoft Active
Directory
Multifactor
Authentication
(RADIUS)
SCCM and
Security Services
Intranet
IP-Whitelisting
and Certificate
Authentication
- 8. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Cloud Economics
No servers to
manage
Scale
on demand
Available
globally
Pay only for
what you use
- 9. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
- 10. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Benefits
Run Windows apps in a browser
(Mac, Windows, Chromebook,
Linux)
Instant access to 3D and
business apps
Centralize and
secure apps and
data
- 11. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Integrate with your
identity, storage, and
network
No hardware or software to
manage
Consistent performance and
global scale
Benefits
- 12. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
User Experience
- 13. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
User Experience
- 14. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Streaming Protocol
- 15. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Scalable Fleet Instance Families
• General Purpose (Medium, Large)
• Compute Optimized (Large, XL, 2XL, 4XL, 8XL)
• Memory Optimized (Large, XL, 2XL, 4XL, 8XL)
• Graphics Design (AMD FirePro S7150x2 GPU, Large, XL, 2XL, 4XL)
• Graphics Desktop (NVIDIA GRID K520 GPU, 2XL)*
• Graphics Pro (NVIDIA Tesla M60 GPU, 4XL, 8XL, 16XL)
*Not available in all regions
Match and Scale Instances for Apps and Users
Application Use Cases
- 16. © 2018, Amazon Web Services, Inc. or Its Affiliates. All rights reserved.
AppStream 2.0 Architecture Review
- 17. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
AppStream 2.0 Architecture
On-premises
Public Internet
VPN
or
Direct Connect
Pixels - HTTPS
Identity/SAML
Pixels - HTTPS
Streaming Gateway
AppStream 2.0 Network – 198.19.x
Customer Managed VPC
Internet
GW
- 18. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
AppStream 2.0 Architecture
On-premises
Public Internet
VPN
or
Direct Connect
Pixels - HTTPS
Identity/SAML
Pixels - HTTPS
Streaming Gateway
Fleet
AppStream 2.0 Network – 198.19.x
Customer Managed VPC
AS2 Storage
Stack
Private Network Access
AS2 ENI
Eth1
AS2 ENI
Eth1
AS2 ENI
Eth1
AS2 ENI
Eth1
Security group
NAT GW Internet
GW
- 19. © 2018, Amazon Web Services, Inc. or its affiliates. All rights reserved.
AppStream 2.0 Architecture
On-premises
Public Internet
VPN
or
Direct Connect
Pixels - HTTPS
Identity/SAML
Pixels - HTTPS
Streaming Gateway
Fleet
File/Utility/License/Database servers
AppStream 2.0 Network – 198.19.x
Customer Managed VPC
AS2 Storage
Stack
Private Network Access
AS2 ENI
Eth1
AS2 ENI
Eth1
AS2 ENI
Eth1
AS2 ENI
Eth1
Security group
Security group
NAT GW Internet
GW
- 20. © 2018, Amazon Web Services, Inc. or Its Affiliates. All rights reserved.
Demo 1 – User experience
Agenda:
- Authentication options and logging in
- Launching ArcGIS Pro
- Show the browser UI
- Launching another application and switching
- Bastion host / Jump-box
- 21. © 2018, Amazon Web Services, Inc. or Its Affiliates. All rights reserved.
Demo 2 – Admin experience
Agenda:
- AWS Management Console for AppStream
- Walk through the process to launch, capture and publish a custom image