How to install Microsoft VDI and key deployment considerations

On the client side, VDI requires Remote Desktop Client (RDC) v6.1 if users need to connect to hosted desktops through a Remote Desktop Web Access (RD Web Access) site. For environments that need Start Menu access to RDS applications and hosted desktops, Microsoft will eventually provide this capability as a new feature in Windows 7 that will be coupled with the next version of RDC. This expanded client functionality -- called RemoteApp and...

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT Terminal Services and Remote Desktop Services Capacity planning for Windows Terminal Services Taking a fresh look at Terminal Services security How to set up Remote Desktop Services on Windows 2008 R2 Working with Terminal Services RemoteApp Citrix to combine desktop virtualization products, lower costs Dealing with Windows Terminal Services licensing issues Planning a Terminal Services Gateway Deploying Terminal Services Web Access Managing Terminal Services via Group Policy IT admins get access to virtual desktops via iPhone: News in brief Tools and Technologies Top tools for securing a virtual desktop infrastructure Rejoice! Citrix modifies its XenDesktop license plans Manage Remote Desktop Services with Windows PowerShell Citrix's new licensing scheme could cause price pain Microsoft releases Sysinternals disk conversion tool What is Citrix HDX? Citrix blended strategy could drive virtual desktop adoption Citrix to combine desktop virtualization products, lower costs Desktop virtualization intrigues IT pros despite cost Microsoft bundles App-V with Remote Desktop Services Virtual desktop management tips Top tools for securing a virtual desktop infrastructure The top 5 ways that VDI can help improve your enterprise's security Capacity planning for Windows Terminal Services Taking a fresh look at Terminal Services security Manage Remote Desktop Services with Windows PowerShell How to back up PCs in a virtual desktop infrastructure The first step toward a virtual desktop infrastructure: The assessment How to set up Remote Desktop Services on Windows 2008 R2 Balance user needs and IT department policy using VDI personalization Working with Terminal Services RemoteApp

RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary

Desktop Connection -- enables administrators to alter available applications through the RDS console and have these changes automatically register on client Start Menus. If you're familiar with Citrix Systems Inc.'s XenApp Plugin for Windows, which was formerly known as Program Neighborhood Agent, Microsoft's technology provides similar functionality.

• Remote Desktop Virtualization Host server. The first physical server required is installed with the RD Virtualization Host role, which has Hyper-V as a prerequisite, in order to host virtual machines (VMs). Several RD Virtualization Host servers can be pooled to create a larger array of virtual hosts.
• Remote Desktop Connection Broker. The second physical server hosts the RD Connection Broker service that identifies which users should be connected to certain RD Virtualization Host servers and, ultimately, the VMs hosted on them. For environments that create farms of Remote Desktop servers to host traditional Terminal Services applications, this server can also orchestrate users by sending them to RDS servers as well.
• Remote Desktop server. This server hosts the Remote Desktop server role and operates much like a traditional Terminal Server because its job is to redirect users to the correct VM. Unlike the RD Connection Broker server, which tracks users and their connections, this server transfers users to a specific VM. When you create an RDS server for VDI, you need to configure the server to operate in "Redirection mode." Once you set a server to this mode, it no longer operates as a traditional Terminal Server because it can be used only for redirecting users to hosted desktops.
• RD Web Access. For environments that haven't upgraded to Windows 7, users can access their hosted desktops by clicking-on the appropriate link in an RD Web Access server. The RD Web Access server can also be used to enumerate traditional Terminal Services applications in addition to hosted desktops.

Clearly, just getting started with Microsoft VDI requires a substantial server hardware infrastructure. A major percentage of hardware used to support Micrsofot VDI is dedicated to the creation of one or more RDS servers whose sole function is to redirect users to their assigned hosted desktops.

This initial investment in hardware becomes more costly when you consider the restrictions on the RDS server. Microsoft's documentation states that a single Remote Desktop server cannot provide redirection for both virtual desktop pools and personal virtual desktops. This means that if you want to deploy VM pools, as well as user-linked personal desktops, you must build two RDS servers to handle the redirection. In addition, each pool of VMs requires another RDS redirector. Depending on how you plan to assign VMs to users, this requirement can significantly increase the number of servers you have to manage.

If all of these requirements have your head swimming, Microsoft has written a comprehensive document on implementing VDI. The document details the necessary steps to install and integrate each of these components with one another.

• Every VM must be a member of the same Active Directory domain. VMs that aren't present in the domain or live in other domains -- even across trusts -- will not function.
• Enable and configure the Remote Desktop component. VMs must have Remote Desktop enabled because it provides the transport functionality to connect incoming users.
• Assign the correct permissions. The computer account for the RD Virtualization Host server must be added to Microsoft's local Administrators group of virtual machines. Also, any user that connects to the VM must be added to that machine's local Remote Desktop Users group.
• Prepare the machine for remote management and use. When completing this step, make sure that the machine has the latest version of Integration Services for Hyper-V installed. If the Windows firewall is enabled for on-domain connections, create an exception for Remote Desktop and Remote Service Management for the appropriate network locations. Finally, allow Remote Procedure Call connectivity by setting the registry value for AllowRemoteRPC to 1 in the location HKLM\System\CurrentControlSet\Control\Terminal Server.

Once you've created the necessary number of virtual machines, you can assign them to users as personal desktops or create a pool by using the RAD Connection Manager under Administrative Tools on the RD Connection Broker server. There, under the Virtual Desktops node, click to create a new virtual desktop pool. The wizard will provide a location for identifying the VMs to be added to the pool, the farm name and the RDS server that will be used for redirection.

Assigning personal virtual desktops requires Active Directory to operate at the Windows Server 2008 forest functional level. Also, there can be only a one-to-one connection between users and desktops. This means that a desktop can be assigned only to a single user and that a user can have only one personal virtual desktop.

Microsoft's VDI technology is basically made up of a bunch of moving parts. As I explained in part one of this series, this is crucial because VDI has a fairly limited set of situations where it is an essential solution. As such, implementing Microsoft VDI requires you to factor in the high expense of simply setting it up.

In creating this infrastructure though, Microsoft has included several extensibility points into the system where third-party components can be integrated to make things easier for admins and their users. The fourth and final tip in this series will highlight a few of these interoperability areas that are emerging.