citrix cloud – virtual apps & desktop –administrators use their identity to access...

Download Citrix Cloud – Virtual Apps & Desktop –Administrators use their identity to access Citrix Cloud,

Post on 12-Apr-2020

0 views

Category:

Documents

0 download

Embed Size (px)

TRANSCRIPT

  • Citrix Cloud – Virtual Apps & Desktop Citrix Workspace – Track Virtual Apps & Desktops

    Claudio Mascaro Senior Systems Engineer / Trainer / Consultant BCD-SINTRAG AG 13. NOVEMBER 2018

  • Workspace App

  • User

    Tablet

    Laptop

    Phone

  • Workspace

    User

    Tablet

    Laptop

    Phone

  • Workspace App Overview

    Citrix Workspace App

    Engines

    Native access to SaaS apps with enhanced security

    Remote access to virtual desktops, apps and browsers

    Secure and optimized connectivity to backend resources

    Integrated access to all cloud and on-prem storage repositories

    Seamless auto-update and centralized management

    User and device behavior monitoring and risk analysis

    Embedded Browser HDX

    Networking Analytics

    Management

    Content Collaboration

  • Personal Phone/Tablet

    Public Kiosk

    Workspace App Overview

    Workspace

    User

    Workspace App (Desktop)

    Workspace App (Mobile)

    Workspace App (Web)

    Corporate Device

    XenApp & XenDesktop

    Endpoint Management

    Gateway

    Access Control

    XenApp & XenDesktop Cloud Connector

    Content Collaboration

    Secure Browser

    Resource Feed

    Ci tr

    ix C

    lo ud

    Se

    rv ic

    es IT

    M

    an ag

    ed

  • • Engines – deployed as needed

    • Platforms –Windows –Linux –Mac –iOS –Android –HTML5

    Workspace App Design Considerations

    Citrix Workspace App

    Engines Embedded Browser

    HDX

    Networking Analytics

    Management

    Content Collaboration

  • Secure Browser Service Browser Apps

    Workspace Virtual Apps/Desktops Service

    Endpoint Management Service

    User

    Content Collaboration Service

    Access Control Service

    Storage Apps

    Virtual Apps and Desktops

    SaaS and Web Apps

    Local Apps

  • BYO Identity

  • BYO Identity Why

    User Box Identity

    SalesForce Identity

    Workday Identity

    SAP Identity

    Office 365 Identity

  • BYO Identity Overview

    User

    Workspace

    Single Sign-on µ-service

    Windows Active Directory

    Azure Active Directory

    Identity µ-service

    or

  • • Set Identity and Access Management authentication

    BYO Identity Configuration

  • • Set Identity and Access Management authentication

    • Set Workspace authentication

    BYO Identity Configuration

  • • Azure AD with Virtual Apps and Desktops –Users prompted for a Windows AD account –Or setup Federated Authentication Services (FAS)

    BYO Identity Design Considerations

  • Citrix Cloud Services

  • Citrix Workspace • Citrix Virtual Apps

    and Desktops Service

    • Citrix Endpoint Management Premium Service

    • Citrix Content Collaboration Advanced Service

    • Citrix Gateway* Service

    Virtual Apps and Desktops Service

    Virtual Apps Service

    Virtual Desktop Service

    Secure Browser Service

    Virtual Apps Essentials Service

    Virtual Desktops Essentials Service

    Citrix Endpoint Management Standard Service

    Citrix Endpoint Management Advanced Service

    Citrix Endpoint Management Premium Service

    Citrix Content Collaboration

    Citrix Gateway Standard Service

    Citrix Web App Firewall Service

    Citrix Analytics

    Citrix Application Delivery Management Service

    License Usage Insights Service

    SD-WAN Cloud- Managed Service

    Overview of Available Services

    Virtual Apps &

    Desktops

    Content Collaboration

    Endpoint Management NetworkingWorkspaces Analytics

    For Service Providers

    *Only ICA Proxy included. Full NetScaler Service features available as as separate purchase.

  • Services Included Minimum purchase 25 subscribers or devices Virtual Desktop Service

    Subscription Virtual Apps and Virtual Desktops Subscription

    Citrix Virtual Apps and Desktops

    Desktop Delivery  

    App Delivery o 

    Multiple resource locations o 

    Smart Tools

    Smart Build  

    Smart Migrate  

    Smart Scale  

    Smart Check  

    ADD-ON SERVICE

    Citrix Gateway ICA/HDX Proxy 1 Gbps data per user per month 1 Gbps data per user per month

    Citrix Virtual Apps and Desktops Entitlements and Licensing

  • Citrix Workspace Entitlements and Licensing

    Services Included Minimum purchase 25 subscribers or devices Citrix Workspace

    Subscription

    Citrix Virtual Apps and Desktops

    Desktop Delivery 

    App Delivery 

    Multiple resource locations 

    Citrix Endpoint Management Premium Service

    Mobile Device Management 

    Mobile App Management 

    Mobile Productivity Apps 

    Citrix Content Collaboration

    Storage Zone Connectors 

    Bring-your-own storage 

    1 GB file sharing data per user 

    Citrix Gateway 1 Gbps data per user per month 

  • Services Included Minimum purchase 50 subscribers or devices Secure Browser Subscription

    Secure Browser Service

    Isolated, Cloud Hosted Browser 

    Includes Cloud IaaS for Browser 

    StoreFront Integration 

    5000 hours of secure browsing per organization 

    1000 hour add-on pack Add-on available

    Citrix Secure Browser Service Entitlements and Licensing

  • Enabling New Services

    Easily add and configure hosted services.

  • Citrix Cloud Architecture & Operations

  • Traditional Deployment

    On-Premises or Cloud Customer/Partner-Managed

    User Layer

    Internal Users

    External Users

    Access Layer

    StoreFront

    Citrix Gateway

    Firewall

    Control Layer

    Delivery Controller

    Domain Controller

    SQL

    License Server

    Resource Layer

    Server OS Assigned Desktop OS

    Random Desktop OS Remote PC

    Firewall

    Hardware Layer

    StorageWifiNetwork Processor GraphicsMemory Hypervisor

  • Citrix Virtual Apps and Desktops Cloud Service Details

    Resource Location On-Premise or Cloud (Customer/Partner-Managed)

    Citrix Cloud (Citrix-Managed)

    Optional on-premises or Citrix Cloud managed.

    License Server

    Delivery Controller

    Site Database

    StoreFront

    Net Scaler Gateway

    User Layer

    Internal Users

    External Users

    Access Layer

    StoreFront

    Citrix Gateway

    Firewall

    Control Layer Resource Layer

    Server OS Assigned Desktop OS

    Random Desktop OS Remote PC

    Firewall

    Hardware Layer

    StorageWifiNetwork Processor GraphicsMemory Hypervisor

    Domain Controller

    Cloud Connector

    Cloud Connector

  • Service Levels

    99.9%

    • Citrix’s goal is that in any 30 calendar day period 99.9% of the time users can access their app or desktop session through the Service.

    • Limitation examples: –Customer failure to follow configuration requirements for the service. –Customer controlled physical and virtual machines. –Customer installed and maintained operating systems. –Customer installed and controlled networking equipment or other

    hardware. –Customer defined and controlled security settings, group policies and other

    configuration policies. –Public cloud provider failures, Internet Service Provider failures or other

    external to Citrix’s control. –Service disruption due to reasons beyond Citrix’s control, including natural

    disaster, war or acts of terrorism, government action.

  • Citrix Cloud Locations

    • Choose a region when signing in for the first time.

    • US and EMEA available now.

    • The region cannot be changed later.

    • Only one region is supported per subscription.

  • Customer B Customer CCustomer A

    Ac ce

    ss C

    on tr

    ol

    Customer A Metadata

    Customer B Metadata

    Customer C Metadata

    Admin

    Customer Application

    Data Resources

    Connector

    Customer Application

    Data Resources

    Connector

    Customer Application

    Data Resources

    Connector

    Security Every customer’s metadata

    is secured in separate containers.

    Application data remains on-premise.

  • • Security Development Lifecycle –Regular security training for the entire team

    –Threat modeling before any code is written –Both static and human code analysis for vulnerabilities

    –Quarterly independent penetration tests

    –Ongoing security reviews and auditing

    • 24/7 Monitoring & Alerting for Security and Availability

    Security

    • Data at Rest: –Citrix Cloud only stores metadata, such as:

    • Usernames • Application Names • Icons

Recommended

View more >