Certificate Authentication for Horizon View Access with UAG

/
Certificate Authentication for Horizon View Access with UAG

Unified Access Gateway (formally Access Point) is used to secure external access for a Horizon View.  There are numerous advantages over using Security Servers, which are still supported, noticeably the lower resources required to run and the removal of the necessity to pair with a dedicated security server.  Not to mention the lack of Windows!  In a multi-site environment with redundancy that is a significant reduction in deployed resource.

Read More

VMware UEM Troubleshooting

/
VMware UEM Troubleshooting

UEM has pretty decent in-built logging which can and should be used to initially troubleshoot both slow logon and application launch times.  As it crops up for me relatively frequently I thought I would do a video running through some of the processes I use.

Read More

Slow Windows Logon? Enable Verbose Messages

/
Slow Windows Logon? Enable Verbose Messages

Slow Logons can be a real pain.  I am in the business of trying to create as fantastic a user experience as possible, so a 2 minute logon is not a good start, especially if we are talking about a non-persistent VDI environment where every logon is an initial logon!

Read More

VMware UEM script repository

/
VMware UEM script repository

The ability for EUC administrators to easily deploy scripts who may not have access to NETLOGON shares and group policy management can be tricky.  UEM provides an environment variable created by default pointing to a script repository in the Configuration share.

Read More

Manual install of NSX VIBs to ESXi Hosts

/
Manual install of NSX VIBs to ESXi Hosts

I’ve had a few problems (predominantly in labs) where the NSX host preparation stage has failed.  There can be a few reasons for this but I have found the most consistent way around this is to deploy the vibs manually.

Read More

Brand the VMware View Landing Page – Part 3 – Update for View 7.4

/
Brand the VMware View Landing Page – Part 3 – Update for View 7.4

Hi Folks, it’s update time again.  This time around we are looking at branding the latest Horizon 7.4 release landing page.

Read More

Roam OneDrive & Office 365 data with non-persistent VDI environments using Liquidware ProfileUnity

/
Roam OneDrive & Office 365 data with non-persistent VDI environments using Liquidware ProfileUnity

I’ve recently been looking at ProfileUnity, specifically in regard to roaming OneDrive in a non-persistent Horizon View desktop pool.

I setup ProfileUnity in a lab environment to test this out.  Using a mounted vhd on a mapped drive this works very nicely and the below video shows a demo of it in action.

Read More

Brand the VMware View Landing Page – Part 2

/
Brand the VMware View Landing Page – Part 2

I finally get round to writing up the image locations to add some company logos to the VMware view landing page and it’s all change in the latest version!

Read More

Brand the VMware View Landing Page

/
Brand the VMware View Landing Page

I have been asked several times if it is possible to rebrand the VMware view landing page with Company logos/colours and this blog post will explain and show you how to do this. 

Read More

Replace KMS with AD based Activation?

/

For those who have a need to activate windows 2012 servers or later and/or clients with windows 8 and above it is well worth having a look at AD based activation.

There are a couple of prerequisites, notably that the AD schema must be extended to the 2012r2 level and the Volume Activation Services role (VAMT) must be installed on a 2012r2 server.

Once you have that you can add your KMS host key using VAMT – this key can be activated online or over the phone.

**When I last did this at a dark site I was able to use a smartphone to complete the activation rather than the rather tedious process of relaying seemingly endless amounts of numbers**

When this is complete qualifying client computers are activated from a Domain Controller during their startup process.

Wins

This removes the need to have KMS servers in your environment along with the minimum count requirements associated (the number of requests before the KMS server will activate clients).

You’ll still need KMS if you need to activate workgroup PCs or windows 7/2008r2 but for those migrating to Windows 10 and especially within a VDI deployment I think this is certainly the way to go!

Importantly you can also activate office 2013 suites and above this way.

For the full process check out the TechNet article here

Top tips for application packaging/deployment

/

Recently I have been dealing with creating appstacks within VMware app volumes but these tips should hold as general pointers for application capture using other products such as thinapp, APPV, appdisk etc.

Read More

Top 5 Tips for View VDI Deployment

/
Top 5 Tips for View VDI Deployment

In order to achieve a successful VDI deployment, there are numerous factors to take into consideration, I have picked a few below around some of the technical aspects that are important to get right. 

Read More

UEM Application Blocking

/
UEM Application Blocking

Application blocking is one of the new features available in UEM 9 that I have been taking a closer look at recently.

This element is disabled by default but when switched on blocks all executables from running bar those that reside in %PROGRAMFILES% or the WINDOWS directory.  You can enable this from the global configuration as shown below.  In this case I am blocking apps when a user is offline.

Read More

Windows 10 handy hint- Window Transparency

/

I came across a useful little feature of windows 10 recently - the ability to make your powershell (or indeed cmd) windows transparent. 

Really handy if you don’t have much screen space and you want to refer to code from another source.

UEM Network Drive Management

/

Traditionally you might map user network drives via a logon script or maybe a group policy preference.  VMware’s User Environment Manager (UEM) gives you some other nice options in the fun filled world of drive mappings!

We can take a conventional approach by mapping a drive for all users or targeting by an AD object such as group or OU.  OK, so far so group policy preferences!

  

 

 

Why don’t we map a drive on a per application basis?  Using UEM we can associate the mapped drive with an app and set it to apply ‘on demand’ when said application is launched.  This avoids the need for the drive mapping to happen at user logon but it is available when required. 

  

 

 

But what about my power users that want to be able to manually map drives (and persist them across devices)?  UEM does not capture these manually mapped drives by default but we can add the below registry location so this information is stored and reproduced in a different session

I’ve used network drives as an example here but by moving application settings into UEM we can optimise the logon process, provide a consistent user experience and control all relevant app settings in one place.  Very Nice!