1 / 89

Products and Technologies for an On Demand Enterprise

Products and Technologies for an On Demand Enterprise. FirstName LastName. Agenda. MetaFrame Presentation Server 3.0 Architecture and Administrative Features End User and Access Features Licensing MetaFrame Conferencing Manager 3.0 MetaFrame Secure Access Manager 2.2

redmondm
Download Presentation

Products and Technologies for an On Demand Enterprise

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Products and Technologies for an On Demand Enterprise FirstName LastName

  2. Agenda • MetaFrame Presentation Server 3.0 • Architecture and Administrative Features • End User and Access Features • Licensing • MetaFrame Conferencing Manager 3.0 • MetaFrame Secure Access Manager 2.2 • MetaFrame Password Manager 2.5 • Demonstration • Q & A

  3. MetaFrame Presentation Server 3.0

  4. Citrix MetaFrame Presentation Server 3.0 • Improved management and access • Enterprise-wide license server • Management console for the MetaFrame Access Suite • Improved user experience • Streaming Audio and Video and Bi-Directional Audio • Workspace control – “Follow-Me” roaming • Security and accessibility standards compliance • Common Criteria & Section 508 compliance

  5. Features and Functionality • Lots of new and useful features • Lots of new Presentation Server Features • Lots of new Web Interface Features • Lots of new Client Features • A few new Secure Gateway Features • A few new RM, IM, and NM Features • Not as big an architectural change as 1.8 -> XP • License Server is the only architectural change • Several architecture components have been enhanced

  6. Migration from 1.8 and XP • Less complex migration than 1.8 -> XP • Can migrate from 1.8 or XP to MPS 3.0 • Same strategies apply • Use Interoperability Mode (for 1.8 migrations) • Single farm mixed XP / 3.0 • Two-farm Load Balancing with WI / PN Agent • Two-farm Aggregation with WI / PN Agent • Migration eLearning course being developed

  7. Architecture and Administrative Features

  8. Architecture / Administrative Features • Enhanced Farm Scalability • Access Suite Management Console • Enhanced Delegated Administration • Enhanced Policies • Zone Preference and Failover

  9. Enhanced Farm Scalability • Validated up to 800 servers in a farm • Zones of 500+ servers (with dedicated ZDC) • Reduced need for Data Store replication • Reduction of traffic from LHC coherency checks • No reduction in IMA Startup traffic

  10. Enhanced Farm Scalability • How scalability is enhanced • IMA traffic optimizations • IMA “packet coalescence” • Zone Data Collector simplification • Only maintains load information about its zone • Does not maintain license information • Streamlined LHC consistency check • Less traffic passes between Data Store and LHC • Licenses no longer maintained in Data Store

  11. Access Suite Management Console • Does not replace the existing Management Console • First Generation of Suite-wide management tool

  12. Enhanced Delegated Administration • Can delegate servers and applications, in addition to view/edit rights on nodes. • Good for geographically-distributed farms and those managed by multiple groups of people

  13. Enhanced Policies • Can throttle any virtual channel bandwidth (not just printing) • Client Drives • Client Devices • Custom Virtual Channels (i.e. Tricerat Screwdrivers) • Network printer behavior • Client printer via ICA, or • Network printer via RPC • MetaFrame Password Manager settings • Disable Password Manager • Central Credential Store location

  14. Enhanced Policies - Filtering • Additional filtering options: • Client IP Address • Client Name • Servers • Users

  15. Enhanced Policies - Filtering • Can use wildcards in filters • i.e. Filter by Client Name: use WI_* as filter for users coming from Workspace Control-enabled WI site • Filter can allow or deny policy • Can mix allow and deny policies within same policy • i.e. disable client drive mapping for “domain users” and deny policies to specific users within the “domain users” group • Supports anonymous and/or explicit user filtering • IP Addresses evaluated is the actual client IP address • Not the Secure Gateway IP or NAT firewall IP

  16. Zone Preference and Failover • Implemented as a Presentation Server policy • Good for distributed farms and ASPs • Forces users to preferred zone for applications • Lowest loaded server within that zone is used • Also useful for Disaster Recovery • Backup zones (up to 10) can be specified • Works for PN Agent and WI connections • Connections via PN and Conferencing Manager may be directed to other zones

  17. End User and Access Features

  18. Workspace Control Web Interface Enhancements RDP Support Enhanced PN Agent Enhanced Logon Feedback Bi-directional Audio SpeedScreen Improvements Session Reliability Enhanced Tablet PC Support Enhanced Java Client Secure Computing SafeWord Support Section 508 Conformance Secure Gateway and Port Address Translation End User / Access Features

  19. Workspace Control • “Follow me roaming” with WI or PN Agent • Requires latest versions of: • Presentation Server Client • Web Interface • Presentation Server • Reconnects printers and client drives from new client • Can reconnect to a session, even if screen resolution has changed • Greatly reduces need for custom solutions

  20. Workspace Control • 1 • 2 • 3

  21. Workspace Control

  22. Workspace Control – PN Agent

  23. Web Interface Improvements • Can install to Non-default web site • WI Ticketing done via IMA, not RPC/XML • Icons are generated on the fly, not stored on disk • Should alleviate missing icons syndrome • Able to Hide disabled applications • Asian Language Web Server Support • Unicode format of ICA files • Supported by 8.x clients only

  24. Web Interface Improvements • More extensive browser support

  25. Web Interface Customization Info • On Windows platform: • .NET instead of Java objects • ASPX instead of ASP • “Client Name” is randomly generated and unique • Required for Workspace Control • No longer “domain-username” • Delete [NFUSE_CLIENTNAME] tag in template.ica to insert client machine name

  26. RDP Client Support from WI • More limited features than ICA • May be useful as a “client of last resort” for Windows XP clients • Uses a Presentation Server License

  27. Enhanced PN Agent • Supports Workspace Control features • Can aggregate applications from multiple farms – as with Web Interface • Use WIAdmin page to configure the farm information, not PNAgentAdmin page • If 7.1 PN Agent is used against WI 3.0 server with multiple farms, it only gets apps from one of the farms • Now useful as a Presentation Server platform migration tool

  28. Enhanced Logon Feedback • Better feedback to user on logon process • Steady stream of notification boxes

  29. Bi-Directional Audio • Full stereo sound can travel from client to server • Support for: • Headset microphones • Philips SpeechMike (i.e. Medical Transcription) • Serial port and USB versions supported • Does not work with Workspace Control • Requires latest client and server • Recommended on LAN environments

  30. SpeedScreen Improvements • SpeedScreen Flash Acceleration • Improves rendering of Macromedia Flash content on published browsers by setting player to “low quality” playback by default. • SpeedScreen Multimedia Acceleration • Streaming of video and audio data to the local device to leverage local content player resources. • SpeedScreen Image Acceleration • Allows tradeoff of image quality for lower bandwidth • Implemented via policy

  31. Session Reliability • Allows sessions to remain viewable when network connectivity is interrupted • Seamless windows can be moved/resized • Uses a configurable TCP port • Noteworthy for some high-security networks • Requires latest version of • Client • Presentation Server

  32. Enhanced Tablet PC Support • Can use “input panel” (soft keyboard) for input • Including login screen on ICA session • Voice input support • Support for display mode switching • Landscape, Portrait display modes

  33. Enhanced Java Client • References built-in TS-CAL on W2K/XP Pro workstations • Note: Post FR2/FR3 Hotfixes also available for this • With J2SE 1.4x (Sun’s JVM) environments: • Printer auto-creation • Easer client drive mapping • UPD v1.0 support (black and white, 300 dpi) • SpeedScreen Browser Acceleration • Image compression

  34. Secure Computing SafeWord Support • Two-factor authentication solution • Similar to RSA SecurID • Enable in WI Admin console

  35. Secure Computing SafeWord Support • SafeWord works with Active Directory • Requires AD Schema Extension

  36. Section 508 Conformance • Section 508 is U.S. legislation for users with disabilities • Required for certain U.S. government entities • No “certification board” exists to determine compliance, but… • “With MPS 3.0, Citrix has done extensive testing to ensure conformance to Section 508 standards”

  37. SG and Address Translation • Port Address Translation now supported between Secure Gateway and the MetaFrame farm NAT firewall with a single IP address for all MetaFrame servers

  38. SG and Address Translation • WIAdmin includes a separate address translation table for “Secure Gateway with Translated Address”

  39. Licensing

  40. Licensing = Headaches • Sales • Technical Licensing is overhead, not a feature…

  41. Licensing change drivers • Reduction in licensing administration • Fewer interactions with Citrix & fewer licensing events • Product upgrades are a benefit of Subscription Advantage • Enhanced management through a web-based interface • Track and manage licenses, and measure compliance • Real-time reporting, graphical historical reporting and passive alerting for license expiration and license exhaustion • Single licensing system across all Citrix products • Manage all MetaFrame Access Suite product licenses from a single place • For MetaFrame Presentation Server, license sharing across server farms

  42. Product Line Renewal Subscription FR1 FR2 FR1 PR2 PR1 PR3 MF PR2 FR1 20 Userw/SA MF PR1 FR1 20 Userw/SA MF PR1 FR2 20 Userw/SA MF PR1 to PR2e 20 Userw/SA MF PR1e 20 Userw/SA ConnectionPacks(5,10,20,50,100) PTK(x 5) StarterSystems(x 5) MediaKits(x 5) Subscription MF PR1e Server MF PR1 FR1 Server MF PR2 FR1 Server MF PR1 FR2 Server MF PR1 to PR2e Server Today product licensing is complex

  43. Licensing Events Product Line FR1 FR2 FR1 PR1 PR2 PR3 Subscription Renewal Purchasing Events Product Line (Date) Product Line (Date) Product Line R5 R6 R3 R4 R1 R2 SynchronizedPurchasing & Licensing Events Simplify by selling the product line • Fewer licensing events, not tied to product releases • Licenses tied to Subscription Advantage periods

  44. MF PR2 FR1 20 Userw/SA MF PR1 FR1 20 Userw/SA MF PR1 FR2 20 Userw/SA MF PR1 to PR2e 20 Userw/SA MF PR1e 20 Userw/SA MF PR1e Server MF PR1 FR1 Server MF PR2 FR1 Server MF PR1 FR2 Server MF PR1 to PR2e Server MF Presentation Svr 20 User July 17, 2004 MF Presentation Svr 20 User July 17, 2003 Simplify by delivering fewer licenses • Elimination of server licenses • Licensing tied to SA, no distinction between major & minor releases

  45. X ___ Product Line X X X X X X Simplify by lowering SKU complexity PRStarterSystems(x 5) PRConnectionPacks(5,10,20,50,100) FR1StarterSystems(x 5) FR1ConnectionPacks(5,10,20,50,100) UpgradeStarterSystems(x 5) MigrationStarterSystems(x 5) Migr. Conn.Packs(5,10,20,50,100) Repeat with each FR Repeat with each PR PTK(x 5) MediaKits(x 5) Subscription

  46. New Licensing Architecture • Adds three new components • License Server • License Management Console web server • License Management Console (web app) • Use of License files instead of activation codes • No more FR licenses • Licenses are valid for a period of time • One License server can support multiple farms • Supports License Pooling across farms • Same user with a session in two farms uses one license • Better reporting capability • Current and Historical Usage

  47. License Strings Cumbersome and prone to typos Cannot backup and restore Require activation and re-activation Cannot consolidate License Files Easy to copy to a folder Easy to backup and restore No need for activation or re-activation Can consolidate if desired Easy to read digitally signed text file License Files Replace Strings

  48. License Server Components • License Server • Installed on a Windows 2000 Server • License Management Console web server • Installed on a Windows 2000/2003 Server or Solaris 2.7 • License Management Console (web app) • Requires IE 5.5/6.0 or Netscape 4.7 / 7.0 • Can co-locate i.e. with MPS or Data Store servers • Guidelines / best practices to be formulated

  49. Licensing Server Fault Tolerance • Can run without license server for 96 hours • Grace period licenses issued for sessions during 96 hour window • MS-Cluster Server solution for License Server • Will require post release hotfix • White paper to be released • Other options: • Cold standby server with same server name • Hot standby server • Request new license file via my.citrix.com • Reconfigure license server configuration for farm

  50. Licensing and Distributed Servers • Each logon queries License Server • Query happens before logon (1.3 Kilobytes of data) • 5 second timeout on query requests • If license server not available, a grace period license is issued • Servers in same farm can have different license servers • One user may consume multiple licenses as a result • License Server uses a configurable TCP port number • May have security impact on some networks

More Related