VDI Mission Accomplished: U.S. Federal Agency Improves Client Computing Security and Efficiency


Published on

Michael Chavez, Sr. Technical Lead at U.S. Federal Agency Joint Task Force North and Nick Brown of Thin Technologies discuss how their Virtual Desktop Infrastructure (VDI) based on Unidesk and VMware software, HP servers, NetApp storage, and ClearCube and Dell Wyse zero clients has improved edge security, reduced administrative overhead, and eased compliance with configuration management guidelines.

  • Be the first to comment

  • Be the first to like this

No Downloads
Total views
On SlideShare
From Embeds
Number of Embeds
Embeds 0
No embeds

No notes for slide

VDI Mission Accomplished: U.S. Federal Agency Improves Client Computing Security and Efficiency

  1. 1. Joint Task Force North’sVirtual Desktop Deployment Michael Chavez Nick Brown Sr. Technical Lead Sr. Solution Architect Joint Task Force North Thin Technologies
  2. 2. Who are we?• Joint Department of Defense Organization• Tasked to support our nation’s federal law enforcement agencies in the identification and interdiction of suspected transnational threats within and along the approaches to the continental United States.• Transnational threats include: – International terrorism – Narcotrafficking – Alien smuggling – Weapons of mass destruction – As well as the delivery systems for such weapons that threaten the national security of the United States12/19/2012 UNCLASSIFIED 2
  3. 3. Our IT Staff• Michael Chavez – Sr. SA Technical Lead• 6 Additional Systems/Network Administrators – Server Management – Desktop and Peripheral Management – Help Desk – Application Management – IT Security12/19/2012 UNCLASSIFIED 3
  4. 4. Thin Technologies Inc.• Professional Services for VARs and Vendors• Women-owned Certified Small Business• VDI since 2007• Virtualization and Storage since 2003• Strong team of diverse but augmenting skillsets• Delivered by MicroTech - Vienna, VA12/19/2012 UNCLASSIFIED 4
  5. 5. Our User Base• Two Networks Consisting of NIPR/SIPR• ~ 200 Users at any given time frame with accounts on both NIPR/SIPR• ~ 500 Endpoints to include Laptops, Desktops, Thin Clients, Printers, and Digital Scanners• Mix of static but mostly mobile users on NIPR12/19/2012 UNCLASSIFIED 5
  6. 6. Why VDI?• Reduce administrative overhead for small staff• Centralize configuration management of operating systems, applications, upgrades, updates and patches (IA IAVAs, IOIs, etc.)• Deploy Windows 7, Office 2010• Reduce storage footprint12/19/2012 UNCLASSIFIED 6
  7. 7. Why VDI?• Scale hardware technical refresh cycles• Offer Cloud-based computing; Connect Any Time from Anywhere• Single Image Management based on function, not platform• SECURITY, SECURITY, SECURITY• Robust Disaster Recovery12/19/2012 UNCLASSIFIED 7
  8. 8. Unique Challenges• Security – Desktop in Data Center• Government Mandates – Patches and Updates – Host Based Security System – Data at Rest• GOTS – Gov’t Vertical Apps (e.g. DCO – Adobe Connect)12/19/2012 UNCLASSIFIED 8
  9. 9. Our Current Environment• Hardware – HP c7000 Server Chassis • HP BL460c G7 CTO Blade Servers – NetApp 3140 • 10Gb NFS on High Speed Fiber Channel Drives – Xsigo Virtual I/O High Speed Data Distribution Switch – Cisco 6509 Distro/3750e Access Layer Switches – ClearCube I9424 CAC enabled PCoIP Zero Client – Dell Wyse RS6000 Zero Client Terminals – Dell 4600/4400 Laptops with VMware View Client12/19/2012 UNCLASSIFIED 9
  10. 10. Our Current Environment• Software – VMware ESXi 5.1 – VMware View 5.1 – Unidesk 2.0 – Windows 7 – Windows Data Center • Enterprise Server 2008 R2 • Exchange 2010 • SQL Server 201012/19/2012 UNCLASSIFIED 10
  11. 11. Management Approach: Layers• Easiest way to create and • Easy to package and manage desktops that version apps, no isolation are different issues• Storage-efficient • 1 Gold OS image12/19/2012 UNCLASSIFIED 11
  12. 12. Deployment: How’s it going?• Phase 1 – Procure• Phase 2 – Plan Deployment – Deploy Backend Infrastructure – Vet Gold Image• Phase 3 – Deploy by Directorate12/19/2012 UNCLASSIFIED 12
  13. 13. Demo12/19/2012 UNCLASSIFIED 13
  14. 14. What’s Next?• VMware View Security Server• F5 Load Balancer• Client Access from Commercial Internet over SSL View Client• Unmanaged Laptop with View Client• Apple iPad Test Bed• SOHO, Remote Office, Deployed Office12/19/2012 UNCLASSIFIED 14
  15. 15. Lessons Learned• Do NOT turn on Host Caching in View• Get User Buy-In – Sell as Windows 7 Upgrade versus VDI – Drill into user base that IT staff is a limited resource• Keep Learning, stay informed12/19/2012 UNCLASSIFIED 15
  16. 16. Questions Michael Chavez Nick Brown John Le Sr. Technical Lead Sr. Solution Architect Solution Architect Joint Task Force North Thin Technologies Unidesk Corporation Michael.Chavez.ctr@jtf nbrown@thin-tech.com jle@unidesk.com n.northcom.mil 509-295-8000 • Want to learn more about Unidesk? – Technical Webinar: Thursday, Dec 20th at 2 PM ET – Register: www.unidesk.com/demo12/19/2012 UNCLASSIFIED 16