End User Computing In The Post PC Era

1EMC CONFIDENTIAL—INTERNAL USE ONLY


End User Computing In The Post PC EraTom TwymanSr. [email protected]


Agenda Where Are We? Keys To Success – People / Process Keys To Success – Technology Wrap Up & Next Steps


Ubiquitous Access


Recognizing users are working differently

Diverse AccessU.S. Employees Survey 37% use do-it-yourself tech97% carry > 2 devices

Diverse Devices2010 Shipments Tablets + Smartphones > PC2015 shipments1.1B cell phones, 300M tablets

Diverse Apps2015 Mobile App Market: $38B

Sources: Morgan Stanley 2011, Gartner 2011, Forrester 2010, Pew 2011


Consumer Technology is driving ITApp StoresUsers provision and install their own apps…within app store guidelines & protection

Application UpdatesApplications are updated through the App Store…by the End User, and not IT


Access to dataUnsecure Unsanctioned File

Access and Sharing

Unsanctioned Access

File Servers

Users are frustrated with their file-sharing experience and are less productive

Leveraging multiple unsanctioned services to meet needs

Internal Users


Flexible Application Delivery

Deliver just an application

From the cloud


Where it’s going…

Desktop Service

App Catalog Service

Data ServiceSecure

Universal AccessUsers, Application,

Data Policies

Mobile

Entprs

Win

SaaS

Win

Entprs

Simplify Manage Connect

UniversalServices Broker


This is dead and gone. Let it go.


Agenda Where Are We? Keys To Success – People / Process

– Your Organizaton– Your Users

Keys To Success – Technology Wrap Up & Next Steps


Why? Understand that the WHY is just as

important as the HOW The use cases for transformation are the key to success…base your decisions on what’s good for YOUR organization

This is the hard stuff...


Kills projects before they start

Kills projects after they start

You will need executive sponsorship

But your users are asking for it!

Keeps everyone focused on the prize

Go in with the right expectations…There is NO CAPEX SAVINGS!

You can’t build it like “regular” VMs

Focus on end-user experience

The experience WILL CHANGE!

Bottom-up approach won’t work…


All in good time…

Avoid the Traps….Thin Clients

$$$$Other Toys

It’s all academic - until…The Great Protocol Debate

Don’t just kick the tires…The Proof of Concept

This is not your father’s vm…Choice of Disk


What’s driving VDI Adoption? Executive Order Windows 7 migrations Security and compliance challenges Consumerization of IT Consolidation of desktop management Flexible Workforce Reduction in support personnel Work-from-Home and Telecommuting Initiatives Disaster Recovery and Business Continuity


3

• How can we simplify desktop management?

• How can we standardize desktop images?

• How quickly can we move to Windows 7?

• How do we extend the hardware lifecycle?

• Do we let users bring in their own devices?

• How do we make our mobile workforce more productive?

Why are WE Moving to VDI? Desktop management complexity• Backup for 47,000+ desktop devices • Ensure security patching compliance• Thousands of user-installed

applications create performance and compatibility issues

Old desktops and OS• Average PC is 3-4 years old & under-

powered• Windows XP is in extended support• Annual cost of refresh > $20M

Poor user experience• No choice of platform • Limited ability to provide “anywhere,

anytime” universal access

1

2


The 5 W’s Who? What? When Where? Why? Understand your use cases

– Who is getting which application?– From Where?– When?– On which Devices? ? ??

?

?


Developing the SolutionUse Case(s)

Application MappingPolicy / Governance

Capability Requirements

Solution Stack:- Broker- App delivery / presentation- Protocol Choices- Stateful / stateless- Et cetera…


Agenda Where Are We? Keys To Success – People / Process Keys To Success – Technology

– Deconstructing the Desktop– Infrastructure– Operations

Wrap Up & Next Steps


Deconstruct the Desktop

Let your app(s) dictate image strategy The best image is one that’s empty

– Virtualize everything possible– Use the Network for user data and application settings

User Data

Operating SystemApplications


User Data “Conscious” and “subconscious” User Data

– Re-directed folders, home shares– Enterprise Data Portals (DKO/AKO)

Persona management– R0@m1ng Pr0f1le$! (bad word)– VDI integrated and third party solutions


Infrastructure Compute Network Storage


Compute best practices Go back to Assessment Determine Usage Matrix, characteristics Desktop to Core ratios Cluster HA considerations Memory is king


Network Considerations Latency = The Enemy Bandwidth Display Protocol considerations Security (VLANS, ACLs) Continuity and Recovery


The Storage Dilemma• Most people think of storage

in terms of capacity• You need to think of storage

in terms of performance• Size doesn’t matter… as much• Do it right the first time• Virtual desktop performance should be as

good or better than a physical PC


Consider Delivery Type• Thick, persistent desktops

• Consume same space as physical• Easier to size, mostly based on capacity

• Thin, non-persistent desktops• Based on common image• Massive space savings = consolidated IO• Harder to size, based on performance

• Use the right drives in the right place• Mega cache for reads… and WRITES


IO Profiles• Reads AND Writes? • What is the average desktop Read/Write IO profile? • 20% Reads, 80% Writes• Cache considerations should include writes


Read IOPS• Technologies help with read IOPS• Array based cache

• RAM based, SSD Based

• Host based cache• PCIe, Hypervisor caching

• Storage tiering• Master image on SSD


Write IOPS• Handling write IOPS is trickier• In general you need to build out the number of

spindles to support write IOPS• Don’t forget the RAID type caveat• SSD writes are slower than reads but still fast• Sizing for write IOPS is probably the most critical

area


Solving the storage barriersBalancing COST and PERFORMANCE

• What governs $/client and user experience?▪Handling more IOPS with less LATENCY

• How do we solve that?▪Intelligent Mix of Dynamic Tiering and Drive Types


NL-SAS/SATA

SAS

Solid StateFlash drives

Tiered StorageFully Automated Storage Tiering (FAST)

Intelligently migrate chunks data between multiple tiers of disk

Keep “Hot” data on the best performing storage, “Cold” data on the most cost effective storage


Dynamic Read & Write Caching• FAST Cache enables you to architect for the

NORM…not the PEAK

• Lower the cost of the infrastructure without decreasing the performance or user experience

• Leverages EFD (Enterprise Flash Drives) to act as a “Cache” for READ and WRITE activity

• Accommodate VDI Performance AND Capacity Requirements


Operations Don’t drag your current process forward Integration begets:

– Simplicity– Transparency– Efficiency


Cloud InfrastructureVMware vSphere

Vmax | VNX | Isilon Cisco | HP | IBM | DellCisco | Brocade | Juniper

Backup / Recovery Cloud StorageArchive / Rich MediaMulti-Site Cloud TechnologiesAvamar | Networker | DataDomain | DPA AtmosRecoverPoint | SRDF | Vplex


“Where Does Integration Happen?”

FCFCoEiSCSIArray APIs/Mgmt

vCenter

VAAI SCSI cmds

ESX Storage Stack

Datamover

Vendor-specific vCenter Plug-In

View VMware-to-Storage relationshipsProvision datastores more easily

Leverage array features (compress/dedupe, file/filesystem/LUN snapshots)

VI Client VM

Storage Array

VMFS NFS

NFSclient

Network Stack

VMware LVM

HBA Drivers

VSS via VMware Tools Snap request

SvMotion requestVM provisioning cmdTurn thin prov on/off

Standards-based VAAI SCSI command support

vStorage API for Multi- pathingNMP

NFS

NIC Drivers

vStorage API for Data Protection (VADP)

Vendor Specific vStorage API for

SRM

SRM

VM object Awareness

in array

Co-opCo-op

Vendor-specific VAAI NFS operation support

VASA Module

NFS VAAI Module

iSCSI/FCoE SW Vendor-specific VAAI block module


Integration Delivers Management Simplicity

VAAI OFFLOAD

10XENABLES UP TOFASTER PROVISIONINGMORE VMs

LESS NETWORK LOADLESS HOST LOAD

FASTER REPLICATION

EMC VSI Makes vCenter“EMC Array Aware”

EMC Arrays Natively Are“VM-aware”

STORAGE TO VM VM TO STORAGE

MANAGE END-TO-END


EMC PowerPath

Monitoring and Management

EMCPowerPathMultipathing

Data EncryptionPowerPath Migration Enabler Virtualization

Nondisruptive array migrations

SAN

HypervisorPowerPath

SERVICECONSOLE

HBA HBA HBA HBA

SAN


EMC vSphere Integrations.Better Infrastructure Efficiency.Easier Storage Management.Stronger Security.Better Deployments.Greater Expertise.


Datacenter Management

Cloud Infrastructure

Self Service Consumption Multi-Tenancy and ChargebackService Catalog

VMware vSphere

Vmax | VNX | Isilon Cisco | HP | IBM | DellCisco | Brocade | JuniperUnified Infrastructure ManagerVblock


Datacenter Automation Layer

Federated CMDB

Portal

Monitoring / Alerting


Open APIs

The Cloud Management StackAutomation / Orchestration

Store

Network

Compute

Virtualization

Orchestration

Service Catalog

Portal

EMCUIM

vCloud Director

Tidal

newScale

AtriumOrchestrator

Service RequestManagement

myServices

vOrchestrator

vServiceManager

CA ProcessOrchestration

CA ServiceCatalog

Open

API

s

Array Element Mgr

Net Element Mgr

Comp Element Mgr

Virt Element Mgr

VMware Cisco BMCCA

IT Orchestrator

EMC


Open APIs

vCenter Operations Suite

Open APIs

The Cloud Management StackService Assurance and Compliance

Store

Network

Compute

Virtualization

Orchestration

Service Catalog

Portal

EMCUIM

vCloud Director

Tidal

newScale

vOrchestrator

vServiceManager

Open

API

s

Array Element Mgr

Net Element Mgr

Comp Element Mgr

Virt Element Mgr

VMware Cisco

IT Orchestrator

EMC

vCenter Operations

vCenter Capacity IQ

vCenter Config Mgr

vCenter Chargeback

SCA

Auto Perf Grapher

NCM

vFabric

IT Operations Intelligence

Watch4Net


Cloud Infrastructure

Multi-Tenancy and ChargebackService Catalog

VMware vSphere

Vmax | VNX | Isilon Cisco | HP | IBM | DellCisco | Brocade | JuniperUnified Infrastructure ManagerVblock

vShieldEdgevCloud Director


vCenterChargebackvCloud

API

vCloud Service ManagervCenter

OrchestratorvCloud

Connector

Cloud Application PlatformvFabricSpring Cloud

Foundry

End User Computing

View ThinApp Zimbra MozyProject Horizon

Legacy AppsSAPMS Oracle

Data AnalyticsHadoopGreen

plum


EMC Consulting

EMC Education

Cloud InfrastructureVMware vSphere

Unified Infrastructure Manager

vShieldEdgevCloud Director

Avamar | Networker | DataDomain | DPA AtmosRecoverPoint | SRDF | Vplex

vCenterChargeback

vCloud Service ManagervCenter

OrchestratorvCloud

Connector

Cloud Application PlatformvFabricSpring Cloud

Foundry

End User ComputingView ThinApp Zimbra MozyProject

Horizon

Legacy AppsSAPMS Oracle

Data AnalyticsHadoopGreen

plum

vCloudAPI

Vblock


The Build your Own Cloud Model


The Converged ModelHypervisor to Storage in One single supported unit


Vblock Fastpath desktop virtualization platform

Enterprise-class,1000s of Users Price TransparencyAutomation Facilitates

Rapid DeploymentSupport: Simple,

Seamless, Smart


Data How do we protect the company? How do we protect the data? How do we protect the solution?


De-duplicate data within and across VM files

Change-block tracking minimizes recovery time

File level recovery from image backup

Replication provides DR for backed up VMs

Resource Pool

VMware Virtualization Layerx86 Architecture

Physical server

Virtual Machines

SANstorag

e

Avamarserver

Mount

= Avamar Software AgentPhysical Server

CPU USAGE NETWORK USAGE DISK USAGE

VMware Virtualization Layerx86 Architecture

Resource Pool

Image-Level Backup

VM Guest OS Backup

= Avamar Software Agent

Protecting your data with EMC Avamar


Disaster RecoveryImage RecoveryFil

e Rec

over

y

SimpleAutomated

Application Integrated

Customer Recovery Challenges


ALWAYSON DESKTOP Logical Diagram

• Shared Applications

• Workload Generators

User authenticates and connects to Site ASite A Fails XUsers' Session Drops/Fails

User is automatically connected to Site B

User re-authenticates


The “Oh No” Moment

(1) http://www.thesun.co.uk/sol/homepage/news/3637704/Missing-Laptop-with-86million-medical-records.html

“The computer vanished from an NHS building in the biggest-ever

security breach of its kind. […] A LAPTOP holding the medical records of eight MILLION patients has gone missing. […] The unencrypted laptop contains sensitive details of 8.63 million people plus records of 18 million hospital visits, operations and procedures.” (1)

NHS


Some Threats Mitigated, but others remain…Threats Solved with VDI? Traditional

Deployments?Threat: Asset Identification(where are desktops?)Threat: Real-time association of User to Desktop (visibility)Threat: Lack of IT controls on Employee owned devices

Threat: User Data Privacy & Encryption (e.g. compliance & removable devices)

Threat: Provisioning Vulnerable Desktops

Threat: Desktop Configuration Compliance

Threat: Desktops as Servers

Integration of Endpoint to Security Ops Monitoring

??

??

?


Maintaining Security and Compliance

Clients

VMware Infrastructure

VMwarevCenter

Active Directory

RSA Archer Compliance Dashboard

RSA SecurID/CAC for remote

authentication

RSA SecurIDfor ESX Service

Console and vMA

RSA enVision log mgmt for:• VMware vCenter & ESX(i)• VMware View• RSA SecurID• RSA DLP• Active Directory

RSA DLP for protection of data

in use


Know Thy Users

Know Thy App

What Should you take Away?

How will you deliver?

What are your use cases?

Great Courage = Great Results!Be bold! Embrace the change!

Know Thy DataHow Best to Protect the Data?

Know Thy StackRequirements Should Drive Technology

Know Thy SelfGo in with the right expectations…


Thank You! Q & A Next Steps Wrap Up

Documents

End User Computing In The Post PC Era