1、Citrix|思杰虚拟桌面的个性化与User Profile大纲 虚拟桌面个性化要素个性化技术实现方法 Windows的Profile管理Personal vDisk技术什么构成了桌面的“个性化”?Citrix Confidential-Do Not Distribute我们的文件和数据我们的工作方式我们的应用Where do we keep and find our filesHow do we find and launch our appsHow do we organise our workspace 文件、文件夹、资源管理器 使用文件夹重定向保存于虚拟机镜像以外我们的文件和数据 基础
2、镜像中安装的应用,Host/Stream 的虚拟应用 部门安装的应用 用户安装的应用我们的应用及我们如何访问我们的应用我们如何工作 桌面偏好设置 应用偏好设置 快捷方式我们的工作方式Citrix Confidential-Do Not Distribute一致性性能和效率可见性 和 控制用户的接受我们为何关注“个性化“?个性化的重要性个性化的重要性Citrix Confidential-Do Not DistributeIT 管理和流程用户的接受个性化的四个层次偏好设置和书签1234用户安装的应用驱动文件和文件夹This is me!只关注了用户环境和用户配置(Profile).今天的虚今天的
3、虚拟拟桌面桌面个个性性化的局限性化的局限性PolicyPrefer-encesHKCUUserFilesAppFiles用户环境用户配置Enforced Policy Preferred Settings Mapped Drives etc/Documents and Settings/Users/C:/BadApp/特殊需求的应用和部门应用 特殊的机器配置 特殊的驱动,比如某些特殊打印机驱动 对XenDesktop的镜像管理来说,是巨大的挑战 镜像管理的两难 Assigned 模式的局限性 Pool模式下,带来很多问题,和现有桌面管理软件、防病毒软件的兼容性Citrix Confidenti
4、al-Do Not Distribute任何不能满足的要求,都需要“assigned”模式理想的个性化环境PolicyPrefer-encesHKLMDeptAppsLocalAppsHKCUUserFilesAppFiles应用 Apps Printers Local Machine settings用户配置/Documents and Settings/Users/C:/BadApp/用户环境 Enforced Policy Preferred Settings Mapped Drives etc用户配置文件(User Profile)Citrix Confidential-Do Not
5、Distribute什什么是么是Windows Profile?v1 vs.v2 Profilesv2 AppDatav1 Application DataWindows Profile“不不”包含包含Documents and Settings or Users以外的任何东西HKCU以外的注册表项(NTUSER.DAT)roaming profile 中不包含:AppDataLocal Documents and SettingsLocal Settings This includes UsrClass.DAT which mounts under HKCU per Microsoft de
6、finition如果不如果不对对Profile进进行管理行管理XenAppXenDesktopWindows DeviceNo user profile assignmentLocal profile created on that server from local default userLocal profile created on that desktop from local default userLocal profile created on that client device from local default userSubsequent logon to same
7、computerAll is well for the moment existing profile on that“device”usedSubsequent logon to different computerSame as row 1,except now the user has two local profiles that will not sync糟糕的用户体验Once the user has more than one profile:-settings no longer consistent-risk being lostProfile的类型 除了Local以外Man
8、datory(强制)Roaming(漫游)Mandatory with Folder RedirectionRoaming with Folder RedirectionOverviewSettings not saved at logoffStored on network file shareSome Folders/files are redirected to file shareSome folders/files are redirected to file shareBenefitsSmall profile=fast logonsReduced management effor
9、tMore user personalizationImproved logon speedFolder data is preservedImproved logon speedConsLimited Personalization only with Folder RedirectionLast writer winsPersonalization=large profileHKCU and certificates not retained Redirected folders may be slower to accessRedirected folders may be slower
10、 to access配置配置Profile位置的方法位置的方法 使用 Active Directory(AD)中的用户帐户属性 使用组策略(GP)仅限于Win7/2008 使用上述方法分配特定于远程桌面服务(以前称为终端服务)会话的配置文件 由于XP无法通过组策略配置Profile位置,所以VDI项目中,往往需要使用Citrix的UPM来管理Profile,从而实现不同类型的桌面,使用不同的Profile类型23Citrix UPM 构架和构架和组组件件1除了微除了微软软以外的以外的Profile管理技管理技术术Citrix User Profile ManagerAppSenseRES Wo
11、rkspace ManagerImmidio Flex Profiles InfrastructureVMWare View 5的Persona Management 将文件移到Profile以外 并且 和OS无关Citrix Confidential-Do Not Distribute文件夹重定向的重要性Profiles以外:Personal vDiskCitrix Confidential-Do Not Distribute XenDesktop 5.5 提供了创新的“personal vDisk”技术 包含于XenDesktop 5.5 所有版本,无额外费用 Early access版本
12、可以从网站下载(not for production)支持讨论区-https:/ 虚虚拟拟桌面个性化技桌面个性化技术术的的突突破破 Personal vDisk 用户的配置和应用都得到保留,包括用户安装的应用以及被分配的应用 与现有桌面管理软件、应用虚拟化软件兼容,如SCCM,App-V and XenApp 在适用VDI的Pool模式时候,用户的个性化仍旧能够得到100%保留 极少的额外管理工作量完整的个性化解决方案完整的个性化解决方案Personal vDisk工作原理工作原理组件:Agent ServerTools实质:WorkSpace 虚拟化 IO拦截 IO重定向 Catalog a
13、nd Rules Mount,the V:Disk Early-Start Driver提示:这些概念是否很熟悉?RulesvDiskCitrix personal vDiskUser EnvironmentUser DataUser SettingsUser-based PoliciesUser Installed ApplicationsCorporate Installed ApplicationsUser ProfilesOSCommon Base ImageCitrix Personal vDiskMachine Settings,User Settings,Everything!O
14、perating System1.Common Base Setup Install OS,common apps and Personal vDisk Client in base VM Create VM pool and entitlePersonal vDisk 工作流程工作流程2.User Access Login through Xen Desktop Client Profile storage created first login Locally administered dept.apps User installed apps Streamed apps3.Image U
15、pdate Update base VM without affecting any user personalizationCommon Base ImageUsers Workspace更多用户 使用现有VDI构架,大大降低每用户成本 降低基础构架成本 使用现有工具、构架、资源降低成本 Evolve toward full VDI vs.rip&replace Quickly increase scope of VDI footprint更加快速 100%persistent 个性化 从任务工作者扩展到知识工作者 支持指派的应用Personal vDisk 的好的好处处总结 User re
16、quirements and customizations Application requirements Citrix technologies XenApp+XenDesktop,XenApp only,XenDesktop only,or?Help Desk and IT skill sets and processes Existing infrastructure Current profile solution Active Directory GPOs,including folder redirectionOne Profile Type Doesnt Fit AllUPM
17、Pending TasksCitrix Confidential-Do Not Distribute个性化个性化Personal vDiskProfile管理管理(UPM)除了Profile管理外,充分考虑到各种个性化的需求 Personal vDisk,结合了Pool模式集中管理,节省存储的优点,又能满足个性化需求 使用能满足要求,但是尽可能简单的Profile管理解决方案 别忘了使用文件夹重定向 很好的竞争武器 最终用户Happy,项目才能成功!Remember!Users EnvironmentCitrix Confidential-Do Not DistributeUser profi
18、les store end users settings.DataUser environment versus a profileEnvironment settings “configurations”Historically managed via logon scriptsMicrosofts Group Policy PreferencesCitrix Confidential-Do Not DistributeFolders,Printers,Drives etcAppSense Policy/ConditionsRES Policy ConditionsAppSense Envi
19、ronment ManagerMicrosoft SQL ServerPersonalization ServerEnd User Device(with AppSense agent)Management architecture seamlessly integrates with Microsoft Systems Center Real-time personalization between operating systems And between different app delivery mechanisms Granular policy and management ca
20、pabilities including instant per-application,per-user personalization rollbackTechnical Benefits of AppSense User VirtualizationSimple AdaptiveEfficientRES Workspace Manager ArchitectureCitrix Confidential-Do Not DistributeComposerFilter DriversAgentLocal CacheWorkspace Manager DatastoreConsoleWorks
21、pace Manager Datastore(Replica)ComposerFilter DriversAgentLocal CacheComposerComposerComposer Desktop Sampler for analyzing current user population Single engine for personalization and security policy Granular,context-aware file synchronization Delegated/multi-tenant administration Part of an integ
22、rated IT as a Service(ITaaS)suiteRES Workspace Manager Key DifferentiationCitrix Confidential-Do Not Distribute What users should have vs.what actually received Nearly impossible to achieve with traditional desktop managementDesired State Management(Workspace Analysis)Citrix Confidential-Do Not Dist
23、ributeImmidio Flex Profiles InfrastructureActive DirectoryFile Serverwith config filesand profilearchivesFlex ProfilesAssistantFlex ProfilesManagement Console Manage settings at application launch and exit Optimize existing roaming profiles Full administrative control over user profiles App-V integration;manage settings inside of the“bubble”No additional investments in database and/or webservers No change required in existing user profile strategyImmidio Key Values
