Df10062 carroll


Published on

  • Be the first to comment

  • Be the first to like this

No Downloads
Total views
On SlideShare
From Embeds
Number of Embeds
Embeds 0
No embeds

No notes for slide

Df10062 carroll

  1. 1. First Look at New Technology (#3): VMWare Project Horizon<br />Developers<br />Liam Yu: VMware<br />
  2. 2. Disclaimer<br />This session may contain product features that are currently under development.<br />This session/overview of the new technology represents no commitment from VMware to deliver these features in any generally available product.<br />Features are subject to change, and must not be included in contracts, purchase orders, or sales agreements of any kind.<br />Technical feasibility and market demand will affect final delivery.<br />Pricing and packaging for any new technologies or features discussed or presented have not been determined.<br />“THESE FEATURES ARE REPRESENTATIVE OF FEATURE AREAS UNDER DEVELOPMENT. FEATURE COMMITMENTS ARE SUBJECT TO CHANGE, AND MUST NOT BE INCLUDED IN CONTRACTS, PURCHASE ORDERS,OR SALES AGREEMENTS OF ANY KIND. TECHNICAL FEASIBILITY AND MARKET DEMAND WILL AFFECT FINAL.”<br />
  3. 3. VMware End User Computing<br />Management<br />Security<br />Compliance<br /><ul><li>Secure
  4. 4. Manageable
  5. 5. Open</li></ul>VMware Cloud Application Platform<br />Management<br />Security<br />Compliance<br />VMware Cloud Infrastructure and Management<br />Management<br />Security<br />Compliance<br />VMware Solutions for IT as a Service<br />
  6. 6. End User Computing: What Do Users Demand Today?<br />Diverse Apps<br />Diverse Devices<br />Diverse<br />Access<br />
  7. 7. Project Horizon Vision: Admin Control for End User Services<br />Cross-Platform Portal<br />SaaS Applications<br />Mobility and Offline <br />Enterprise App Store<br />Virtual Desktops<br />View<br />(VDI) <br />End User Workspace<br />ThinApp<br />App Management<br />horizon<br />App Publishing<br />Admin Console <br />AD<br />Directory Federation<br />User Data Mgmt<br />Collaborative Workspace<br />License Tracking<br />Access Management<br />
  8. 8. VMware End User Computing Journey to the Cloud<br />
  9. 9. Project Horizon: SaaS App Management <br />
  10. 10. Challenges<br />SaaS identity silos<br />No compliance & access controls<br />Damage and loss from passwords<br />95% of apps use User ID and Password - not federated<br />Options<br />Extend LAN IDM System – Expensive!<br />Develop, Test, and Certify Individual Connectors to each SaaS app<br />Email<br />SharePoint<br />AD<br />Enterprise SaaS Application Management Challenges<br />HR App<br />Hosted <br />SharePoint<br />Workday<br />Salesforce.com<br />
  11. 11. Project Horizon: Enterprise AD federation to SaaS<br />Email<br />SharePoint<br />AD<br />HR App<br />horizon<br />Secure STS<br />Hosted <br />SharePoint<br />Workday<br />Future<br />SaaS Apps<br />Salesforce<br />
  12. 12. Project Horizon: Enterprise SaaS Federation<br />Challenges<br />Horizon Features:<br />Federation & Enterprise connector<br />SaaS identity silos<br />Audited Role Based Access<br />No compliance &access controls<br />Never-compromised credential withSplit-key Technology<br />Password exposure:damage, loss<br />Horizon Federation Network<br />Costly managingpartner access<br />
  13. 13. Project Horizon: On-Prem Components<br />Features<br />Lightweight software-based enterprise connector that integrates with AD/LDAP<br />Unified Enterprise identity – extend enterprise identity to SaaS<br />One place to manage users – your enterprise directory<br />Real-time integration, option with no directory sync required<br />Administrative Selections to Poll AD for Users / Groups <br />Easy integration with internal desktop login (Kerberos/NTLM) for SSO <br />Customizable Branding<br />horizon sts<br />Virtual<br />Appliance<br />Microsoft IIS <br />Service<br />
  14. 14. Project Horizon: Usage of SAML<br />SAML provides high security<br /><ul><li>No passwords so eliminates phishing opportunities
  15. 15. SAML tokens are digitally signed so cannot be tampered
  16. 16. Provide a Time To Live duration to prevent replay attacks</li></ul>SAML is an open standard supported by major SaaS vendors like Google, Salesforce.com, Webex, etc<br />1<br />2<br />3<br />App User DB<br />User<br />Service Provider<br />Identity Provider, <br />e.g. AD<br />
  17. 17. Project Horizon: Usage of HTTP Unity<br />What about apps that do not support SAML?<br /><ul><li>HTTP Unity
  18. 18. Mechanism for exchanging user identity data, SSO and authentication between multiple federated security domains.
  19. 19. No changes to application
  20. 20. Horizon service stores app credentials in secured “ID Vault” & provides them to app based on user’s authentication to IDP
  21. 21. Single Sign On for User</li></li></ul><li>Project Horizon: Multi-Factor Authentication Support<br /><ul><li>Flexible Authentication Options
  22. 22. 2nd factor browser cookie
  23. 23. Mutual Authentication: Confidence image/text
  24. 24. SMS
  25. 25. VIP Token</li></ul>14<br />
  26. 26. Horizon: Securely Bridging to the Cloud<br />horizon<br />Salesforce<br />Google Apps<br />Workday<br />1<br />Active Directory<br />(Users and Groups)<br />SaaS Applications<br />Horizon STS<br />(Secure DS Extender)<br />Horizon SaaS<br />Adapters<br />3<br />File<br />Servers<br />DMZ<br />End User<br />Computers<br />Horizon Agents<br />Horizon On-Prem<br />Connector<br />2<br />Manage the User Locally, but Extend Identity to the Cloud<br />
  27. 27. Screen Shots<br />
  28. 28. Project Horizon<br />Cloud-Ready Application Management for your traditional, virtualized and SaaS applications<br /><ul><li> Complete application visibility: Deploy, manage and report
  29. 29. Seamless access to applications across different device platforms
  30. 30. A single solution for your traditional and virtualized desktops</li></ul> . . . delivered as a service from the cloud.<br />
  31. 31. First Look at New Technology (#3): VMWareProject Horizon<br />Stop by our booth for more details<br />
  32. 32. Visit the Developer Training and Support Booth in Force.com Zone<br />D I S C O V E R<br />Developer training, certification and support resources <br />that help you achieve<br />S U C C E S S<br />Find us in the Partner Demo Area of <br />Force.com Zone 2nd Floor Moscone West<br />Learn about Developer Certifications<br />Discover Developer Learning Paths<br />
  33. 33. Remember. . .<br /><ul><li>Check Chatter for additional session information
  34. 34. Get your developer Workbooks and Cheat Sheets in the Force.com Zone
  35. 35. Visit for more information related to this topic</li></ul>Don’t forget the survey!<br />
  36. 36. How Could Dreamforce Be Better? Tell Us!<br />Log in to the Dreamforce app to submit<br />surveys for the sessions you attended<br />Use the Dreamforce Mobile app to submit surveys<br />OR<br />Every session survey you submit is a chance to win an iPod nano!<br />