Mikael Lindholm Sr. Systems Engineer EMEA Tech Readiness
CloudPortal Service Manager 11.0 Introductory Technical
Presentation July 2012
Slide 2
2013 Citrix Agenda Theory - Overview on CPSM Key
functionalities Provisioning serivces Multitenant / Delegated
administration -Workflows Importing Users (AD Synch) Reporting
Positioning: Where its strong, where its weak Key concepts Physical
architecture -Server parts Web Services API communication Logical
architecture -Locations Plans Resellers / Customers / Users -Rights
functionalities -Services workflows Scalability
Slide 3
2013 Citrix Goals of the training Goal 1 Goal 2 Goal 3
Slide 4
2013 Citrix Pre reqs for the training Windows environment AD
DNS IIS Windows based service management
Slide 5
Citrix Cloud Solutions Citrix story looking from the cloud
Slide 6
2013 Citrix A cloud company that enables mobile workstyles
Slide 7
2013 Citrix Citrix Cloud solutions overview Explain the whole
pic Expalin what are CloudGateway (XenMobile Enterprise) and
CloudBridge Explain the Cloud Platforms
Slide 8
2013 Citrix
Slide 9
Consumer-like experiences Self-service procurement Immediate
provisioning Any app/service 24x7 access Access from mobile,
personal devices
Slide 10
2013 Citrix 71% Employees not using IT-sanctioned apps 78% Plan
to increase use of cloud services Early Adopters Leverage Cloud
Services *2013 State of Cloud Applications Access Survey by
OneLogin
Slide 11
2013 Citrix Backoffice Limited apps Dedicated infra. Low
utilization Days to weeks Low visibility IT role: technology
Self-service storefront Any app, public/private Elastic
infrastructure High utilization Immediate High visibility IT role:
business
Slide 12
2013 Citrix Storage, Compute, Network Server Virtualization
Cloud Orchestration Public & Private IaaS Multi-Service Broker
DaaS RaaS SaaS PaaS STaaS IaaS ITaaS Infrastructure Apps Workloads
Services Business Impact IT Operations IT Only ----------------
Departmental
---------------------------------------------------------- All
Manual Automated App and Desktop Virtualization You are here
Virtualization Cloud
Slide 13
2013 Citrix CloudBridge Public Cloud (Telco) Automation -
CloudPlatform Virtualisation - XenServer
NetworkNetworkStorageStorageServersServers RESTful/AWS API
ADADXAXAWebWebWebWebEmailEmail AppSrvAppSrv
HAHADRDRLMLMSLMSLMDMCDMCEtc..Etc.. Your Orchestration CloudPlatform
GUI CloudPortal Services Manager Self-service Private Cloud (Acme
Ltd) Provision Infrastructure Provision User Services Open Source
Community Apache CloudStack Linux Foundation The Xen Project Linux
Foundation The Xen Project Database CloudPortal Business Manager
Service Connectors HR Admin IT Admin
2013 Citrix Deliver Windows apps & desktops as a true cloud
service
Slide 16
2013 Citrix Cloud is NOT a Place It is not an organization. It
is no longer the exception. It is the design center Private Cloud
Public Cloud Enabling Desktop & Apps as a Service requires:
On-demand self-service Cloud-scale orchestration Global, multi-site
management Multi-tenant isolation Rapid elasticity Measured
services
Slide 17
2013 Citrix Service Lifecycle for the Cloud Era Building clouds
& delivering services requires new roles. Symbiotic lifecycle
Continuous feedback loops enable: Confidence in IT investments
Measures success and opportunities Empower users (subscribers) to
choose the tools they need to be productive Service Designer
Infrastructure Provider Tenant Service Operator
BrowseSubscribeUse
Slide 18
2013 Citrix What is CPSMs role in Merlin A lot of this is still
under discussion On-boarding (Departemental) Self service Workflows
Delegated administration Reporting Services Beyond Hosted Apps and
Desktops
Slide 19
2013 Citrix Serv virt. StorageStorageNetworkNetwork CloudPortal
Service Manager CloudPlatform, Amazon EC2 Avalon phase 2 (plan)
Merlin will work on a Cloud Infrastructure as well as Serv virt.
Merlin will include (plan) App Orchestration to build farms on
demand Merlin will work with CPSM to provide all flexcast models
(not XenClient, physical not likely) CloudPortal Business manager
will provide workflow, webshop, billing XA/XD Merlin (includes App
Orch 2.0) CloudPortal Business Manager
Slide 20
Product Overview CloudPortal Services Manager
Slide 21
2013 Citrix Automation Delegation User Account Management User
Account Management Single, self-service interface for provisioning
apps, desktops and services from the cloud Exchange, SharePoint,
OCS/Lync, SQL Server, Dynamics CRM Web Data Hosting RDS and Citrix
XenApp RDS and Citrix XenApp Hyper-V Custom Services Messaging
& Collaboratio n Web & Data Hosting App and Desktop
Delivery Virtualization SDK APIs
Slide 22
2013 Citrix CPSM key functions 1.Simple provisioning of
services to users 2.Multitenant and Delegated administration 3.Easy
onboarding 4.(Usage) Reporting 5.Workflows
Slide 23
2013 Citrix Provisioning Services to Users
Slide 24
2013 Citrix Multitenant Cloud admin, reseller, customer,
user
Slide 25
2013 Citrix Delegated Administration
Slide 26
2013 Citrix Easy onboarding Manual CSV AD Sync
Slide 27
2013 Citrix Reporting
Slide 28
2013 Citrix NEW: Workflows
Slide 29
2013 Citrix What services
Slide 30
2013 Citrix Services managed by CPSM 11 Citrix XenApp Hosted
Apps and Desktops Microsoft Exchange Microsoft Lync Microsoft
Office Communication Server Microsoft SharePoint Services Microsoft
Dynamics CRM Microsoft Dynamic Data Center Black Berry Enterprise
Server Microsoft Active Directory and Synchronization Windows File
Shares Microsoft IIS Web hosting Microsoft SQL Data hosting
DNS
Slide 31
2013 Citrix Simplify adding new services Enhanced Services SDK
Introduced service isolation to simplify adding and updating a
service Simplify services page to only handle plan administration,
property configuration and enablement Introduced a new services
schema page focused on adding new services Enhanced usability of
service creation web pages
Slide 32
2013 Citrix SDK Partners White labelled desktop and server
backup -become an online backup provider with BackupAgent Profile
Migrator migrates user and app personalization when moving from on
premise desktop/apps to a Cloud hosted desktop/apps Enable the
right application and personalization to be presented based on
users run-time context Surgically control user rights and
application execution with AppSense user virtualization
Slide 33
2013 Citrix CPSMv11 New Features Citrix Confidential - Do Not
Distribute - May 2013 Improved Installation Experience Improved
Upgrading Experience Server Platform Support Workflow Approval AD
Sync Enhancements Hosted Exchange enhancements Data Warehouse and
Reporting Enhancements
Slide 34
2013 Citrix AD Sync Simple Synchronization Automation API Local
Active Directory Central, shared Active Directory Synchronization
Selected User accounts User delete User create User Update Password
change Account expiry Easy deployment Configurable Replicated AD
Account
Slide 35
2013 Citrix Default: 2$ / registered user / month Perpetual
pricing by request (hidden SKUs) CloudPortal Services Manager
Reporting SKUs Official Description: Usage Reporting - Citrix
Complete Cloud Desktop Services for Service Providers $2
Slide 36
2013 Citrix Strong / weak (Internal slide only) Strong CSPs or
where one team can control the back end CPSM needs to control what
it manages Standard Windows like services Citrix integration Weak
Enterprises, where CPSM cannot fully control resources Web hosting
services E.g. Wordpress, PHP Billing
Slide 37
2013 Citrix Competition Parallels Desktone Microsoft
Slide 38
CloudPortal Service Manager Tech overview
Slide 39
2013 Citrix Citrix Confidential - Do Not Distribute - May 2013
CPSM Basic Architecture
Slide 40
2013 Citrix CPSM Basic Software Architecture Shared AD Forest
Provisioning Engine Provisioning Engine
ApplicationServersApplicationServers ASP.NET Web Services ASP.NET
Web Services Corporate AD Forest Provisioning Engine Provisioning
Engine ApplicationServersApplicationServers ASP.NET Web Services
ASP.NET Web Services Billing System Billing System Reseller Billing
System Reseller Billing System HR Systems HR Systems Self Sign-up
Self Sign-up XML API Integration / Aggregation XML API Integration
/ Aggregation System Users Admin | Help Desk | Reseller | Customer
System Users Admin | Help Desk | Reseller | Customer Presentation
ASP.NET UI Cortex Hosted Services Framework Security Service
Infrastructure - Configuration Cortex Hosted Services Framework
Security Service Infrastructure - Configuration
2013 Citrix Citrix Confidential - Do Not Distribute Firewall
Open Ports Requirements for Services Manager
Slide 43
2013 Citrix Citrix Confidential - Do Not Distribute - May 2013
CPSM Communication Architecture CortexWeb Server Customer
Administrator Citrix WS XenApp Farm SharePoint Services SharePoint
WSExchange WS Provisioning Engine Cortex System Databases Exchange
Domain Controllers Browser Customer Admin enters URL of CortexWeb
Server in Web Browser Customer Admin enters log in credentials in
the CloudPortal Control Panel Customer Admin is authenticated
against AD Domain Controllers 3 1 2 Customer Admin Provisioning
request to the Provisioning Engine Server 4 The Provisioning Engine
Server contacts the Web Services to provided Hosted services 5 5 5
Billing and usage report information is supplied to SQL Database
Servers 6
Slide 44
2013 Citrix 100 - 1000 users, Basic Setup for Hosted Exchange -
Single Server Setup CPU: One 2.0GHz Xeon processor (Dual Core) or
equivalent Memory: 2 GB RAM, preferably 4 GB RAM Disk: 36 GB disk
space 1000 - 5000 users, Basic Setup for Hosted Exchange - Dual
Server Setup Database Server CPU: One 2.0 GHz Xeon processor (Dual
Core) or equivalent Memory: 2 GB RAM, preferably 4 GB RAM Disk: 36
GB disk space Web Server CPU: One 2.0 GHz processor. Memory: 1Gb
RAM minimum, 2Gb Recommended Disk: 36 GB disk space Scalability:
General guidelines
Slide 45
2013 Citrix 5000+ users, Basic Setup for Hosted Exchange -
Triple Server Setup Database Server CPU: Two 2.0 GHz Xeon processor
(Dual Core) or equivalent Memory:4 GB RAM minimum Disk:36 GB disk
space Web Server CPU: Two 2.0 GHz processors Memory: 2Gb RAM
minimum Disk:36 GB disk space Provisioning Engine Server CPU: Two
2.0 GHz processors Memory: 2Gb RAM minimum Disk: 36 GB disk space
Scalability: General guidelines
Slide 46
2013 Citrix 100 000+ User, Advanced Setup SQL Server Cluster 2
or more SQL Servers. Load balanced Web Servers 2 or more Windows
2003/2008 Web servers. Provisioning Server Cluster 2 or more
Clustered Windows Servers, or Redundant Provisioning Server (Warm
standby) Scalability: General guidelines
Slide 47
Installing
Slide 48
2013 Citrix Key concepts Locations Key users accounts Web
Services
Slide 49
2013 Citrix Locations Location Corresponds with an Active
Directory domain hosting the services CPSM supports multiple
locations Top Location Aka Top Environment Services, Top
Environment level A logical location, not bound to an AD Stores the
default settings for all AD Location Services AD Location Services
Aka Location Level Stores the settings for hosted services for a
specific location XenApp Farm SharePoint Services Exchange AD
Domain Controller AD Location Top Location
Slide 50
2013 Citrix Others Service provider administrator The first
administrator user created when the first location is created for a
Services Manager deployment. Can also be viewed as the top Reseller
Web service An MSI file that integrates service-specific functions
into the Services Manager control panel.
Slide 51
2013 Citrix Customers and Users Top customer Top admin Reseller
Special customer Customer Customer admin Users Limited admins,
customized privileges
Slide 52
2013 Citrix Installing Pre requisites AD extended with the
Exchange attributes DNS aliases pointing to the different CPSM
functions File share for configuration file Installation flow
1.Create configuration file and system databases 2.Install key
server roles 3.Configure key server roles 4.Configure the 1.Primary
Location and OU 2.Customer OU 3.Service Provider adminsitrator
Slide 53
2013 Citrix Lab environment presentation
Slide 54
2013 Citrix Installation lab Install CPSM 11
Slide 55
Configuring and Provisioning Services
Slide 56
2013 Citrix Services Services architecture Services Customer
Plans User Plans Conncecting to a service Customer and User
management Top customer top admin Reseller Customer Customer admin,
different rigths,users Exchange lab Provisioning Service
Slide 57
2013 Citrix Services Architecture Most services are connected
to CPSM through a web service Config file Asmx file
Slide 58
2013 Citrix Service plans A plan is a predefined collection of
settings and parameters for a service Comparable to offering in
CloudPlatform or product / bundle in CloudPortal Business Manager A
Customer Plan is a collection of settings affecting all users
within the customer E.g. XenApp application access model, max
allowed total mailbox size...
Slide 59
2013 Citrix Enabling services at the portal First at top
location Then at AD Location Then create customer- and user-plans
Then assign reseller rights to the CSP admin Optional: Assign
resell rights to the additional resellers Provision a Customer Plan
to a customer Provision User Plans to users
Slide 60
2013 Citrix Closer look at the Provisioning Service If I find
material on this
Slide 61
2013 Citrix Labs Exchange Provisioning a customers and a few
users
Slide 62
Adding services: Hosted apps and dekstops App
Orchestration
Slide 63
2013 Citrix App Orchestration overview One two slides on
AppOrch
Slide 64
2013 Citrix CSP Reference Architecture 64 F i r e w a l l
Tenant Network F i r e w a l l CSP Network Application vLAN
Provisioning vLAN Authentication vLAN Management vLAN Tenant vLAN
Management Network DMZ Authentication Active Directory (Shared) DNS
& DHCP Merchandising Server Netscaler / Access Gateway HA Pair
Web Interface XenApp Data Collectors Licensing EdgeSight Power
& Capacity Management Database CSP XenApp Farm Shared vLAN
Tenant 3 vLAN Tenant4 vLAN Tenant1 XenApp Workers Tenant2 XenApp
Workers Tenant3 XenApp Workers Tenant4 XenApp Workers Application
Servers File Services Resource Pools Storage Provisioning
Slide 65
2013 Citrix Isolation in a Multi-Tenant Environment Shared
Brokers and Management Servers Shared Brokers and Management
Servers Tenant A Isolation : Basic Shared Session Hosts Cost: Low
Tenant B Session Isolation Shared Brokers and Management Servers
Shared Brokers and Management Servers Tenant A Isolation : Better
Session Hosts Cost: Low-Med Tenant B Server Isolation Session Hosts
Brokers and Management Servers Brokers and Management Servers
Tenant A Isolation : Best Session Hosts Cost: Higher Farm Isolation
Brokers and Management Servers Brokers and Management Servers
Session Hosts Tenant B Apps & Desktops as a Service Blog
Slide 66
2013 Citrix Administration The Legacy Way 66 Windows Servers
XenApp Farm Web Interface
Slide 67
2013 Citrix 67 Windows Servers XenApp Farm Web Interface
Administration - With App Orchestration App Studio (HTML5)
Slide 68
2013 Citrix 68 Windows Servers XenApp Farm Web Interface App
Orchestration Engine App Orchestration Engine Connector Agents
Config Database Access Control Multi- tenancy Administration - With
App Orchestration App Studio (HTML5)
Slide 69
2013 Citrix Hosted Apps and Desktops Connects to App Orch v1
Requires to run a script to add rights on the Customer OU Direct
connection to the App Orch Engine, no web service install Customer
plan Web server isolation User plan Applications and their
isolation level
Slide 70
2013 Citrix Lab Hosted apps and desktop lab
Slide 71
Workflows
Slide 72
2013 Citrix Worklow approval overview Two scenarios Customer
workflows SelfService Reseller workflows Can enable self
service
Slide 73
2013 Citrix Customer workflows All customer internal Can be for
User Service provisioning / de-provisioning User account
provisioning / de-provisioning Two different approvals Approval by
managers Need to define a manager Approval by groups Need to define
groups Approvals can combined
Slide 74
2013 Citrix Manager Approval Process
Slide 75
2013 Citrix Manager Approval Process
Slide 76
2013 Citrix Manager Approval Process
Slide 77
2013 Citrix Group Approval Process
Slide 78
2013 Citrix Group Approval Process = Accepted
Slide 79
2013 Citrix Manager and Group Approval Process
Slide 80
2013 Citrix Manager and Group Approval Process
Slide 81
2013 Citrix Manager and Group Approval Process
Slide 82
2013 Citrix Manager and Group Approval Process
Slide 83
2013 Citrix Manager and Group Approval Process Accepted
Slide 84
2013 Citrix Service Provider workflows Uses cases Actions that
need to approved by the service provider (Resellers?) Can be used
to approve Customer creation Service sign up withing customer What
else?
Slide 85
2013 Citrix Service Provider workflow example
Slide 86
2013 Citrix Approval process E-mail Through portal
Slide 87
2013 Citrix Modifying and extending worklows Changing the
message Extending the functionality
Slide 88
2013 Citrix Workflow lab wire frame Enable workflows + self
servie Test Manager approval Configure manager approval (one
level), disable group Set Manager as a default field Define a
manager for a user User to subscribe to a service, manager to
approve, user to test Test Group approval Configure group approval
(disable manager), all has to apprive Define group of two users
User to subsicrie to a service, group to approve, If time permits,
test a combination
Slide 89
2013 Citrix Workflow lab wireframe contd Service provider
approval Enable for customer creation, explore what else is there
Have reseller test signing up a customer, and signing up to a
service Approve Repeat step 2 but, then reject and see what
happens
Slide 90
Reseller and on boarding
Slide 91
2013 Citrix Key concepts on reseller and on boarding Reseller
right / Service Onborarding options Csv file AD sync
Slide 92
2013 Citrix AD Sync Simple Synchronization Automation API Local
Active Directory Central, shared Active Directory Synchronization
Selected User accounts User delete User create User Update Password
change Account expiry Easy deployment Configurable Replicated AD
Account
Slide 93
2013 Citrix Reporting
Slide 94
Upgrading CPSMv10 to CPSMv11 Citrix Confidential - Do Not
Distribute May 2013
Slide 95
2013 Citrix Upgrade Overview Upgrade Process for System
Databases Upgrade Process for Platform Server Roles Upgrade Process
for Web Components Upgrade and Migration Process for the Reporting
Service and Data Warehouse Citrix Confidential - Do Not Distribute
May 2013
Slide 96
2013 Citrix Citrix Confidential - Do Not Distribute - May 2013
Upgrade Overview Cloud Portal Services Manager 11.0 supports
in-place upgrading from Cloud Portal Services Manager 10 The
following steps outline the recommended upgrade process: 1.Disable
all locations in your deployment by stopping the Directory Web
Service, Provisioning Engine, and Web platform components. 2. Back
up all Services Manager databases (OLM, OLM Reports, OLM
Reporting). 3. Upgrade the system databases. 4. Upgrade and
reconfigure platform server roles and web services in use. 5.
Upgrade the Reporting service and migrate the data warehouse.
6.Enable all locations by starting the Directory Web Service,
Provisioning Engine, and Web platform components.
Slide 97
2013 Citrix Citrix Confidential - Do Not Distribute - May 2013
Upgrade Process For System Databases 1.From the installation media,
double-click setup.exe and click Get Started. 2. On the Select
Deployment Task page, select Upgrade Existing Deployment. 3. On the
Upgrade Existing Deployment page, select Upgrade System N Databases
and then click Install. 4. When prompted, accept the End User
Licensing Agreement and then click Next. 5. Click Install. The
Setup Tool installs the Configuration Tool and displays progress.
Click Finish to continue with the upgrade process. 7. On the
Specify Primary Database Settings page, perform the following
actions and then click Next:
Slide 98
2013 Citrix Enter the following database details for the
primary location: In Server address, specify the database server
for the primary location using the DNS alias, IP address, or FQDN.
In Server Port, select Use specific port and enter the port number
used by the SQL Server. The port for the default instance of SQL
Server is 1433. In Authentication Mode, select whether to use
Integrated (Windows) or SQL authentication. By default, Integrated
is selected. In Connect as, specify the username and password of
the SQL administrator user. These fields are available when select
the SQL authentication mode. Citrix Confidential - Do Not
Distribute - May 2013
Slide 99
2013 Citrix Click Test Connection to ensure the Configuration
Tool can contact the SQL Server: 8. On the Confirm Databases Are
Backed Up page, select This step has been completed and then click
Next. 9. On the Summary page, review the database configuration
information. If you want to change anything, click Back to return
to the appropriate configuration page. 10. Click Commit. The
Configuration Tool launches the database upgrade scripts and
displays the upgrade progress. 11. When the upgrade is completed,
click Finish. The Configuration Tool returns you to the Upgrade
Existing Deployment page. Citrix Confidential - Do Not Distribute -
May 2013
Slide 100
2013 Citrix Citrix Confidential - Do Not Distribute May 2013
Upgrade Process For Platform Server Roles This upgrade process
applies to the Directory Web Service, Provisioning, and Web roles
only. The Configuration Tool performs the following tasks when
upgrading the Provisioning role: 1.Back up the configuration files.
2. Stop the Queue Monitor service. 3. Disable all scheduled tasks.
4. Upgrade product files and applicable registry settings. 5.
Restore configuration files and apply any XML updates. 6. Restart
the Queue Monitor service. 7. Re-enable all scheduled tasks.
Slide 101
2013 Citrix 1. Stop the site and applicable web services in
IIS. 2. Back up the site. The default file path for this backup is
%Program Data%\Citrix\CloudPortal Services Manager
Setup\Backups\Legacy\component-name. 3. Update physical paths in
IIS to point to the site backup. 4. Update the site files in the
%Program Files% directory. 5. Copy updated site files from %Program
Files% to C:\Inetpub\site-name. 6. Restore customer content from
site backup (for example, downloads, images, style sheets, or
scripts). 7. Restore web.config file from site backup and apply
updates. 8. Update physical paths in IIS. 9. Restart site in IIS.
Citrix Confidential - Do Not Distribute May 2013 Upgrade Process
For Web Components
Slide 102
2013 Citrix Upgrade and Migration Process For The Reporting
Service and Data Warehouse Citrix Confidential - Do Not Distribute
1. Back up Services Manager 10 config.xml file, report definitions,
and data sources. 2. Upgrade product files for the Reporting
service. 3. Finalize the upgrade and start the new Data Warehouse
service. After these tasks are completed, you can migrate the data
warehouse. This process launches the DataWarehouseMigrator.exe
command- line utility which performs the following tasks: 1. Import
new reporting configuration and report definitions for enabled
services. 2. Migrate the OLMReporting database and generate the
required configuration files. After the utility is finished
running, you manually restore any reporting customizations. For
example: 1. Redeploy any custom views or stored procedures to
accommodate schema changes. 2. Migrate any custom commands in the
Version 10 config.xml file to the Version 11 config.xml file to
accommodate schema changes. 3. Redeploy any report definition
customizations.
Slide 103
Modifying and customization
Slide 104
2013 Citrix Ways to change CPSM Adding provisioning steps
Language files Translating Extra rigths
Slide 105
Troubleshooting
Slide 106
2013 Citrix Troubleshooting Looking at the provisioning
workflow On the Provisioning Server go to the CloudPortal
Configuration Menu > Provisioning and Debug Tools >
Provisioning Requests Try out different queries through the web
services Enabling tracing Open up C:\Program
Files(x86)\Citrix\Cortex\Services\Service Name\web.config
Change
Slide 107
2013 Citrix Before changing configuration, especially adding
location, backup databases, and snapshot the VMs Other common
tips
Slide 108
2013 Citrix Need to get that documented at some point Jona
troubleshooting the provisioning process
Slide 109
References
Slide 110
2013 Citrix Demo environment from VTC CSP toolkit E-docs
CaaS.citrite.net
Slide 111
Credits
Slide 112
2013 Citrix Credits Madhu Sudan, WWTSR Jared Engskow Virtual
Training Team Jay Strydom Darren Harding & Jona Appelbaum