1. Horizon Linux Multi-Session Farms

Linux can and has been a fundamental platform for developers to work from. From a licensing perspective, in many cases organization like to keep costs down in favour and would then consider Linux as an alternative. The Linux integration with VMware Horizon is not well documented. Like the Windows Operating system where we have both Virtual Desktop infrastructure and RDS Published applications, Linux too has a Virtual Desktop and Application based offering. In this session we will look at the RDS equivalent of Linux, that being Linux Multi-Session. One of the objectives in this guide is take you through step by step to deploy a Linux based Multi-Session Farm and then have Published Applications.

Full credit to Rahul Jha in the EUC-Livefire team to bring together the underlying requirements to make this work

Part 1. Preparing an Ubuntu base for Horizon Linux Multi - Session for Site 1

We will complete the following tasks

  • We domain join the Linux Master
  • We configure TrueSSO for Linux Master
  • We install the Horizon Agent
Section 1. Domain joining the Linux Master
  1. On your Control Center server
    • Open your Site 1 Chrome Browser
    • On the Favourite Bar
      • select the vcenter-01a shortcut
      • Under Getting Started
        • select the LAUNCH VSPHERE CLIENT area
  1. In the VMware vSphere client area
    • In the username area
    • In the password area
      • enter VMware1!
    • At the bottom of the screen
      • Select LOGIN
  1. In the VMware vSphere client
    • In the Hosts & Clusters Inventory
      • select the LinuxMaster-1a virtual machine
      • Note: Power on the LinuxMaster-1a if it's off
    • In the Virtual Machine Details area
      • Next to IP Addresses (2)
        • make a note of YOUR specified assigned DHCP IP address
          • Note: In the example its 172.16.10.151
    • Minimize your Site 1 Chrome Browser
  1. On the ControlCenter server desktop
    • Select and launch the Putty shortcut
  1. In the Putty Configuration window
    • under Host Name (or IP address)
      • enter Your DHCP IP address for LinuxMaster-1a
    • under Saved Sessions
      • enter LinuxMaster-1a
    • in the Saved Sessions area under Load
      • select Save
    • select Open
  1. In the Putty Window
    • next to login as:
      • enter vmware
    • next to password:
      • enter VMware1!
    • with your keyboard
      • select ENTER
  1. In the Putty window
    • enter sudo nano /etc/hosts
    • next to password for vmware:
      • enter VMware1!
  1. In the Putty window
    • Verify  in line 2 that we have already appended
    • linuxmaster-1a.euc-livefire.com
    • linuxmaster-1a
    • With your keyboard
    • press CTRL + X
  1. In the Putty window
    • Install the winbind and samba packages
      • enter the following command
      • sudo apt install samba krb5-config krb5-user winbind libpam-winbind libnss-winbind
        • If prompted for Password, enter VMware1!
        • If not, press Y to install.
        • validate that winbind is already installed and its the newest version
      • sudo apt install tdb-tools
        • If prompted for Password, enter VMware1!
  1. In the Putty window

enter the following command
sudo nano /etc/samba/smb.conf

  • next to password for vmware:
    • enter VMware1!
  1. In the Putty window
    • with your Keyboard, move your Cursor down until its two spaces below [global]
  1. In the Putty window
    • Copy the following from below

security = ads
realm = EUC-LIVEFIRE.COM
workgroup = EUC-LIVEFIRE.COM
idmap uid = 10000-20000
idmap gid = 10000-20000
winbind enum users = yes
winbind enum groups = yes
template homedir = /home/%D/%U
template shell = /bin/bash
client use spnego = yes
client ntlmv2 auth = yes
encrypt passwords = yes
winbind use default domain = yes
restrict anonymous = 2
kerberos method = secrets and keytab
winbind refresh tickets = true

  • Paste in your Putty console
  1. In the Putty window
    • Using your keyboard,
      • move  your Cursor down,  until you find workgroup = WORKGROUP
      • Replace WORKGROUP with EUC-LIVEFIRE
        • As shown in the screenshot above
  1. To Save the smb.conf
    • Using your keyboard,
      • Enter CTRL + X
      • Press Y
      • Press Enter to exit
  1. Retsart smbd.service
    • sudo systemctl restart smbd.service
  1. In the Putty window
    • enter the following command

sudo nano /etc/krb5.conf

  1. In the Putty window
    • In the [libdefaults] section
      • using your keyboard, move the cursor below default_realm = EUC-LIVEFIRE.COM
      • paste the following one by one
        • dns_lookup_realm = true
        • dns_lookup_kdc = true
  1. In the Putty window
    • using your Keyboard, move your Cursor down until you find {realms}
    • leave your Cursor over the ATHENA.MIT.EDU
    • with your Keyboard
      • press ENTER
      • press the TAB key
      • move your Cursor one row up
  1. In the Putty window
    • Above ATHENA.MIT.EDU
      • type in the following

  EUC-LIVEFIRE.COM = {

               kdc = controlcenter.euc-livefire.com

               admin_server = controlcenter.euc-livefire.com

       }

  1. In the Putty window
    • move your Cursor down to {domain_realm}
    • Open a new row, between {domain_realm} and .mit.edu = ATHENA.MIT.EDU
  1. In the Putty window
    • Below {domain_realm}
      • type the following

euc-livefire.com = EUC-LIVEFIRE.COM
.euc-livefire.com = EUC-LIVEFIRE.COM

  1. In the Putty window
    • using your Keyboard
    • enter CTRL + S to save
    • enter CTRL + X to exit
  1. In the Putty window
    • enter the following command

sudo nano /etc/nsswitch.conf

  1. In the Putty window
    • change the following to
      • Next to:
        • passwd:      files winbind
        • group:         files winbind
        • shadow:     files winbind
    • To Save
      • Type CTRL + S
    • To Exit
      • Type CTRL + X
  1. In the Putty window
    • enter the following command
      • sudo kinit administrator
      • with your keyboard
        • Press Enter
    • Next to Password for [email protected]:
      • type VMware1!
  1. In the Putty window
    • enter the following command
      • sudo klist
        • with your keyboard
          • Press ENTER
  1. In the Putty window
    • enter the following command

sudo net ads keytab create -U administrator

  • Next to Password for [EUC-LIVEFIRE.COM\administrator]:
    • type VMware1!
  1. In the Putty window
    • enter the following command

sudo net ads join -U administrator

  • Next to Password for [EUC-LIVEFIRE.COM\administrator]:
    • type VMware1!
  1. In the Putty window
    • enter the following command

sudo systemctl restart winbind.service

  1. In the Putty window
    • enter the following command

wbinfo -u

  • with your keyboard
    • Press Enter
  1. In the Putty window
    • enter the following command
      • wbinfo -g
      • with your keyboard
        • Press Enter
  1. In the Putty window
    • enter the following command

sudo reboot

  • next to  [sudo] password for vmware:
    • type VMware1!
    • Press Enter
  1. In the Putty window (inactive)
    • select the top left corner icon
    • From the drop down menu
      • select Restart Session
  1. In the Putty window
    • next to login as :
      • enter vmware
        • with your keyboard
          • press ENTER
    • next to password :
      • enter VMware1!
        • with your keyboard
          • press ENTER
Section 2. Configure TrueSSO for Ubuntu Desktop
  1. On your Ubuntu desktop,
    • To install the pkcs11  support package
    • In the Putty session enter
      • sudo apt install libpam-pkcs11
        • when prompted for password
          • enter VMware1!
  1. On your Ubuntu desktop,
    • to Install the libnss3-tools  package
    • In the Putty session enter
      • sudo apt install libnss3-tools
        • with your keyboard
          • Press ENTER (no password required)
  1. On your ControlCenter server
    • select the START button
    • In the Menu
      • select Window Administrative tools
  1. In the Administrative Tools area
    • select Certificate Authority
  1. In the Certificate Authority console
    • select & right-click CONTROLCENTER-CA
      • in the drop menu
        • select Properties
  1. In the CONTROLCENTER-CA Properties
    • select View Certificate
    • In the Certificate window
      • select the Details tab
  1. In the Certificate > Details tab
    • select Copy to File....
  1. In the Certificate Export Wizard
    • Welcome page
    • select Next
  1. In the Certificate Export Wizard
    • Export File Format page
      • next to DER encoded X.509 (.CER)
        • select the radio button
      • select Next
  1. In the Certificate Export Wizard
    • File to Export page
      • select Browse
        • browse to C:\certificates\
          • next to File name:
            • enter certificate
            • select Save
      • select Next
  1. In the Certificate Export Wizard
    • Completing the Certificate Export Wizard page
      • select Finish
    • to close the The export was successful message and Export wizard
      • select Ok
    • to close the Certificate window
      • select OK
    • to close the CONTROLCENTER-CA Properties  window
      • select OK
    • Close the Certsrv admin console
  1. On your ControlCenter server
    • Launch your WinSCP client
      • below Host name:  
        • enter your IP address
      • below Username
        • enter vmware
      • below Password
        • enter VMware1!
    • select Login
  1. In the WinSCP client
    • select the UP arrow twice
  1. In the WinSCP client
    • select and open the tmp folder
  1. On the Controlcenter server
    • From the desktop, Taskbar
      • Open the folder Icon
        • browse to C:\  > Certificates
  1. On the Controlcenter server
    • From the C:\Certificates folder
      • select and drag certificate.cer to WinSCP /tmp/ folder
  1. On your Ubuntu desktop,
    • to Locate the root CA certificate that you downloaded,
      • In the Putty session enter the following commands
        • cd /tmp
        • ls
          • you should see the certificate.cer certificate
  1. On your Ubuntu desktop,
    • Convert the CER file to . PEM format
      • This will also serve to validate the file format
      • In the Putty session enter the following commands
        • sudo openssl x509 -inform der -in /tmp/certificate.cer -out /tmp/certificate.pem
      • Once the file is converted, run the following command to validate
        • ls
  1. On your Ubuntu desktop,
    • Make an/etc/pki/nssdb directory to contain the system database
      • In the Putty session enter
        • sudo mkdir -p /etc/pki/nssdb
      • If prompted for password for vmware:
        • enter VMware1!
  1. On your Ubuntu desktop,
    • to Use the certutil  command to install the root CA certificate to the system database/etc/pki/nssdb
      • In the Putty session enter
        • sudo certutil -A -d /etc/pki/nssdb -n "root CA cert" -t "CT,C,C" -i /tmp/certificate.pem
  1. On your Ubuntu desktop,
    • Copy the root CA certificate to the/etc/pam_pkcs11/ca certs  directory.
      • In the Putty session enter

mkdir -p /etc/pam_pkcs11/cacerts

sudo cp /tmp/certificate.pem /etc/pam_pkcs11/cacerts

  1. On your Ubuntu desktop,
    • To Create a hash link for the root CA certificate. .
      • In the Putty session enter

cd /etc/pam_pkcs11/cacerts

sudo pkcs11_make_hash_link

Section 3: Deploying the Linux Horizon Agent
  1. On your ControlCenter server
    • from the Desktop
      • launch the WinSCP shortcut
  1. In the WinSCP window
    • In the left pane
      • select New Site
    • In the right pane, under
      • Host name:
        • enter your LinuxMaster IP
      • User name:
        • enter vmware
      • Password:
        • enter VMware1!
      • Select Login
    • In the Warning window
      • select Yes
  1. In the WinSCP window
    • In the right pane Navigate to
      • from the dropdown denoted as 1
        • Select /<root>
          • Home > vmware > Downloads
            • Open Downloads
  1. On the ControlCenter server desktop
    • Open the software shortcut
      • Open the Horizon > Linux folder
        • Select > right-click > VMware-horizonagent-linux-x86_64-2306-8.10.0-21968037.tar.gz file
        • select Copy
    • Switch back to WinSCP
  1. In the WinSCP window
    • In the right pane
      • select and right-click to launch the menu
        • select Paste
      • In the Upload window
        • select OK
    • Switch back to your Putty session
  1. In the Putty window
    • If required
    • Next to login as:
      • type vmware
    • next to password:
      • type VMware1!
  1. In the Putty Console
    • enter the following command:

sudo apt install open-vm-tools-desktop open-vm-tools

  • with your keyboard
    • press ENTER
  • next to password for vmware:
    • enter VMware1!
  • from the output
    • validate that open-vm-tools is installed and you have the latest version
  1. In the Putty Console
    • with your keyboard
      • type
        • cd /home/vmware/Downloads/
      • In the /Downloads$ path
      • with your keyboard
        • Type ls -l
          • Press ENTER
          • Type tar -zxvf VMware-horizonagent-linux-x86_64-2306-8.10.0-21968037.tar.gz
            • Note: The above command will extract the files from the compressed agent bundle
  1. In the Putty Console
    • /Downloads$
      • with your keyboard
      • type ls to list the files
        • type cd VMware-horizonagent-linux-x86_64-2306-8.10.0-21968037/
          • Press ENTER
  1. In the Putty Console
    • Install Linux Agent with TrueSSO Mode and Multi-session mode enabled
      • In the VMware-horizonagent-linux-x86_64-2303-8.9.0-21434177 folder
        • enter sudo ./install_viewagent.sh --multiple-session -T yes
          • with your keyboard
            • Press ENTER
              • if prompted [sudo] password for vmware:
                • type VMware1!
                  • Press ENTER
                    • when prompted, Are you sure to install Linux agent (y/n)?
                      • type Y
                        • Press ENTER
  1. Once the agent installation is complete,
    • Message will show up
      • Installation Done
  1. In the Putty Console
    • type

sudo nano /etc/vmware/viewagent-custom.conf

  • Press ENTER
  1. In the Putty Console
    • NANO console
      • using your keyboard, scroll down to the bottom of this window
      • below #AppEnable=FALSE
        • enter
          OfflineJoinDomain=samba
          NetbiosDomain=EUC-LIVEFIRE
      • using your keyboard
        • To SAVE
          • Press CTRL + S
        • To EXIT
          • Press CTRL + X
  1. On  ControlCenter server
    • On the taskbar
    • Launch the folder icon
    • Browse to \\horizon-01a.euc-livefire.com\software\Horizon\Linux
    • In your File Explorer window
    • select and copy pam_pks11.conf
  1. On  ControlCenter server
    • switch to WinSCP
    • In WinSCP
      • browse to /tmp folder
      • In the TMP folder
        • paste pam_pkcs11.conf
  1. In your Putty session

cd /tmp

sudo cp pam_pkcs11.conf /etc/pam_pkcs11/

  1. In your Putty session, modify the permission of pam_pkcs11.conf that we just copied in step 16
    • sudo chmod 777 /etc/pam_pkcs11/pam_pkcs11.conf
    • ls -l /etc/pam_pkcs11/pam_pkcs11.conf
  1. Set the access permissions for the /etc/krb5.conf configuration file to 644
    • sudo chmod 644 /etc/krb5.conf
    • ls -l /etc/krb5.conf
Section 4. Predefining settings for seamless app launches

Many applications on first launch require a range of configurations. We will mitigate these challenges with the following command line functions

  1. In the Putty Console
    • enter sudo -i
      • with your keyboard
        • press ENTER
    • when prompted for password for vmware:
      • enter VMware1!
  1. In the Putty Console
    • enter  cd /etc/
      • with your keyboard
        • press ENTER
    • enter mv skel skel.bak
      • with your keyboard
        • press ENTER
  1. In the Putty Console
    • enter  cp -R /home/vmware skel
      • with your keyboard
        • press ENTER
    • enter ls skel
      • with your keyboard
        • press ENTER
  1. In the Putty Console
    • enter  chown root:root -R skel
      • with your keyboard
        • press ENTER
    • enter reboot
      • with your keyboard
        • press ENTER
  1. In the Putty window (inactive)
    • select the top left corner icon
    • From the drop down menu
      • select Restart Session
  1. In the Putty window
    • next to login as :
      • enter vmware
        • with your keyboard
          • press ENTER
    • next to password :
      • enter VMware1!
        • with your keyboard
          • press ENTER

Part 2. Configuring Horizon to Deploy a Linux Multi-Session Farm for Site 1

Introduction. We will configure the following

  • Configure the Linux Farm for Site 1
  • The Site 2 Farm Configuration has already been done
Configuring the Linux Farm
  1. On your ControlCenter server
    • Open your Site 1 Chrome Browser
    • In the Favourites Bar
      • select the vcenter-01a shortcut
      • Under Getting Started
        • select LAUNCH VSPHERE CLIENT
  1. In the VMware vSphere client
    • In the Username area
    • In the Password area
      • type VMware1!
    • Select LOGIN
  1. In the VMware vSphere client
    • Hosts & Clusters Inventory
      • Right Click and ShutDown the LinuxMaster
      • Once the VM is Powered off
        • Right- click LinuxMaster-1a
          • In the Menu, select Snapshots > Take Snapshot...
  1. In the Take snapshot window
    • Next to Name
      • Type Horizon Linux Agent
    • At the bottom of the window
      • select CREATE
  1. On your Site 1, Chrome Browser
    • In the Favourites Bar
      • select the Horizon Site 1 shortcut
  1. In the Horizon Login Console
    • In the Username area
      • enter administrator
    • In the Password area
      • enter VMware1!
    • select Sign In
  1. In the VMware Horizon Admin Console
    • Expand Inventory
      • Select Farms
      • In the Farms area
        • Select Add
  1. In the Add Farm wizard
    1. Type area
      • Accept the default
      • In the bottom right corner
        • Select Next
  1. In the Add Farm wizard
    1. vCenter Server area
      • Accept the default
      • In the bottom right corner
        • Select Next
  1. In the Add Farm wizard
    1. Storage Optimization area
      • Accept the default
      • In the bottom right corner
        • Select Next
  1. In the Add Farm wizard
    1. Identification and Settings area
      • Configure the following:-
        • Under *ID
          • enter LinuxBLRFarm
  1. In the Add Farm wizard
    1. Identification and Settings area
      • Configure the following:-
        • Under Farm Settings
          • Default Display Protocol
            • Blast
          • Allow Users to Choose Protocol
            • No
        • Under Pre-launch Session Timeout (Applications Only)
          • select Never
        • Under Empty Session Timeout (Applications Only)
          • select Immediate
        • Under When Timeout Occurs
          • select Log Off
        • Under Logoff Disconnected Sessions
          • select Immediate
        • Under Max Sessions Per RDS Host
          • select No More Than enter 3
      • Select Next
  1. In the Add Farm wizard
    1. Load Balancing Settings area
      • Accept the default
      • In the bottom right corner
        • Select Next
  1. In the Add Farm wizard
    1. Provisioning Settings area
      • Configure the following:-
        • Under *Naming Pattern
          • enter LinuxBLR-
        • Under *Maximum Machines
          • enter 2
        • Select Next
  1. In the Add Farm wizard
    1. vCenter Settings area
      • Configure the following:-
        • Under *Golden Image in vCenter
          • Select Browse
        • In the Select Golden Image window
          • next to LinuxMaster-1a
            • select the radio button
        • Select Submit
  1. In the Add Farm wizard
    1. vCenter Settings area
      • Configure the following:-
        • Under *Snapshot
          • Select Browse
        • In the Select Default Image window
          • next to Horizon Linux Agent
            • select the radio button
        • Select Submit
  1. In the Add Farm wizard
    1. vCenter Settings area
      • Configure the following:-
        • Under *VM Folder Location
          • Select Browse
        • In the VM Folder Location window
          • select the Region01A
        • Select Submit
  1. In the Add Farm wizard
    1. vCenter Settings area
      • Configure the following:-
        • Under *Cluster
          • Select Browse
        • In the Select Cluster window
          • select the Bangalore
        • Select Submit
  1. In the Add Farm wizard
    1. vCenter Settings area
      • Configure the following:-
        • Under *Resource Pool
          • Select Browse
        • In the Resource Pool window
          • select the Bangalore
        • Select Submit
  1. In the Add Farm wizard
    1. vCenter Settings area
      • Configure the following:-
        • Under *Datastores
          • Select Browse
        • In the Resource Pool window
          • next to CorpLun01a
            • select the radio button
        • Select Submit
        • In the  Warning window
          • Select OK
  1. In the Add Farm wizard
    1. vCenter Settings area
      • Leave the VM Compute Profile Settings as default
      • Review your configurations
      • In the bottom right corner
        • Select Next
  1. In the Add Farm wizard
    1. Guest Customization area
      • Configure the following:-
        • Under *AD Container
          • Select Browse
        • In the AD Container window
          • expand OU=Corp
            • select OU=Computers, OU=Corp
        • Select Submit
  1. In the Add Farm wizard
    1. Guest Customization area
      • Configure the following:-
        • Under *AD Container
          • Next to Allow Reuse of Existing Computer Accounts
            • Select the CHECKBOX
      • In the bottom right corner
        • Select Next
  1. In the Add Farm wizard
    1. Ready to Complete window
      • Review your configuration
      • Select Submit

Wait for at least 20 minutes for the provisioning to complete

  1. In VMware Horizon Admin Console
    • under Inventory
      • select Machines
        • In the Machines area
          • select the RDS Hosts tab
  1. In the Machines / RDS area
    • scroll to the right
    • wait & keep refreshing the page until the Status says Available for both servers

There is a known bug which we are trying to resolve where  both the newly created VMs may have the duplicate IP. However as a workaround, we would need  to remove the network adaptor and re-add them for bot the newly created VMs

Part 3. Configuring Horizon Linux Multi-session published applications in VMware Horizon

We first publish applications in Site 1 and repeat the process in Section 2 for Site 2

Section 1. Linux Multi-session assignments with VMware Horizon for Site 1
  1. In the Horizon Administration Console
    • Select Inventory > Applications
  1. In the Application Pools area
    • Select Add
    • Select Add from installed Applications
  1. In the Add Application Pool wizard
    1. Select Applications area
      • To display alphabetically
        • select Name
      • Under Name
        • Select the checkbox next to:-
          • Calculator
  1. In the Add Application Pool wizard
    1. Select Applications area
      • To move to page 2 of the menu
        • In the bottom right,
          • select the arrow
      • Under Name
        • select
          • Sudoku
          • Terminal
  1. In the Add Application Pool wizard
    • Select Applications area
      • scroll down
      • select the checkbox next to:-
        • Pre-Launch
      • select Next
  1. In the Add Application Pool wizard
    1. Edit Applications area
      • Select Submit
  1. In the Add Entitlements window
    • select Cancel

In a later exercise, Instead of creating a local Entitlement, we will create a single multi-site Global Entitlement

  1. In the Application Pools area
    • Note the Site 1 published Linux Multi-session applications
Section 2. Linux Multi-session assignments with VMware Horizon for Site 2
  1. On your ControlCenter server
    • from the Taskbar
      • select the Site 2 Browser Profile (red browser)
  1. In the Site 2 browser profile
    • from the Favourites bar
      • select the Horizon Site 2 shortcut
  1. In VMware Horizon login page
    • in the Username area
      • enter administrator
    • in the Password area
      • enter VMware1!
    • select Sign in

If login fails, note the message to REFRESH your browser and try again

  1. In the Horizon Administration Console
    • Select Inventory > Applications
  1. In the Application Pools area
    • Select Add
    • Select Add from installed Applications
  1. In the Add Application Pool wizard
    1. Select Applications area
      • To display alphabetically
        • select Name
      • Under Name
        • Select the checkbox next to:-
          • Calculator
  1. In the Add Application Pool wizard
    1. Select Applications area
      • To move to page 2 of the menu
        • In the bottom right,
          • select the arrow
      • Under Name
        • select
          • Sudoku
          • Terminal
  1. In the Add Application Pool wizard
    • Select Applications area
      • scroll down
      • select the checkbox next to:-
        • Pre-Launch
      • select Next
  1. In the Add Application Pool wizard
    1. Edit Applications area
      • Select Submit
  1. In the Add Entitlements window
    • select Cancel

In a later exercise, Instead of creating a local Entitlement, we will create a single multi-site Global Entitlement

  1. In the Application Pools area
    • Note the Site 2 published Linux Multi-session applications

In preparation for Part 4, switch to your Horizon Admin Console on Site 1

Part 4. Configuring Global Entitlements for the Multi-session Assignments

In a multi-site setup, USABILITY of Enterprise applications can be critical. Users require a seamless user experience. As part of Cloud Pod Architecture we are able to setup Global Entitlements that give administrators the ability, to entitle users to Applications and Desktops in a multi-site scenario. This makes the application more USABLE in an Enterprise.

In Part 4, we fulfill the first steps in setting up a multi-site solution

Section 1. Configuring Global Entitlements for Published Applications on Site 1
  1. On your Site 1 Browser
    • Horizon Admin Console login
      • In the Username area
        • enter administrator
      • In the Password area
        • enter VMware1!
      • select Sign in
  1. In the Horizon Admin console
    • Menu pane
      • below Inventory
        • select Global Entitlements
Step 1. Adding Calculator to Global Entitlements for Site 1
  1. In the Global Entitlements area
    • select Add
  1. In the Add Global Entitlement window
    • next to :
      1. Type
        • Next to Application entitlement a
          • select the radio button
    • In the bottom right-corner
      • select Next
  1. In the Add Global Entitlement window
    • next to :
      1. Name and Policies
        • under Name
          • enter Enterprise Corp Calculator
        • under Display Name
          • enter Calculator
  1. In the Add Global Entitlement window
    • next to :
      1. Name and Policies
        • under Policies > Scope
          • select the radio button
            • All Sites
        • under Default Display Protocol
          • from the dropdown
            • select VMware Blast
          • below Allow Users to Choose Protocol
            • from the dropdown
              • select NO
          • next to Pre - Launch
            • select the Checkbox
        • In the bottom right-corner
          • select Next
  1. In the Add Global Entitlement window
    • next to :
      1. Users and Groups
        • under Add users or groups to the global entitlement
          • select Add
  1. In the Find User or Group window
    • in line with Name/User Name
      • next to Starts with
        • enter Sales
    • under Description
      • select Find
    • under Name
      • next to sales
        • select the checkbox
    • in the bottom right-corner
      • select OK
  1. In the Add Global Entitlement window
    • next to :
      • Users and Groups
        • under Add users or groups to the global entitlement
    • select Add
  1. In the Find User or Group window
    • in line with Name/User Name
      • next to Starts with
        • enter Developers
    • under Description
      • select Find
    • under Name
      • next to sales
        • select the checkbox
    • in the bottom right-corner
      • select OK
  1. In the Add Global Entitlement window
    • select Next
  1. In the Add Global Entitlement window
    1. Ready to Complete section
      • in the bottom right-corner
        • select Finish
  1. In the Global Entitlements area
    • select Enterprise Corp Calculator
  1. In the Enterprise Corp Calculator window
    • select the Local Pools tab
  1. In the Enterprise Corp Calculator window
    • In the Local Pools tab area
      • select Add
  1. In the Assign Pools - Enterprise Corp Calculator window
    • under ID
      • next to Calculator
        • select the checkbox
    • select Add
  1. In the VMware Horizon Admin console
    • Note your Global Entitlement now has a local assignment
      • called Calculator
    • In menu pane
      • under Inventory
        • select Global Entitlements
Step 2. Adding Sudoku to Global Entitlements for Site 1
  1. In the Global Entitlements area
    • select Add
  1. In the Add Global Entitlement window
    • next to :
      1. Type
        • Next to Application entitlement
          • select the radio button
    • In the bottom right-corner
      • select Next
  1. In the Add Global Entitlement window
    • next to :
      1. Name and Policies
        • under Name
          • enter Enterprise Corp Sudoku
        • under Display Name
          • enter Sudoku
  1. In the Add Global Entitlement window
    • next to :
      1. Name and Policies
        • under Policies > Scope
          • select the radio button
            • All Sites
        • under Default Display Protocol
          • from the dropdown
            • select VMware Blast
          • below Allow Users to Choose Protocol
            • from the dropdown
              • select NO
          • next to Pre - Launch
            • select the Checkbox
        • In the bottom right-corner
          • select Next
  1. In the Add Global Entitlement window
    • next to :
      1. Users and Groups
        • under Add users or groups to the global entitlement
          • select Add
  1. In the Find User or Group window
    • in line with Name/User Name
      • next to Starts with
        • enter Sales
    • under Description
      • select Find
    • under Name
      • next to sales
        • select the checkbox
    • in the bottom right-corner
      • select OK
  1. In the Add Global Entitlement window
    • next to :
      • Users and Groups
        • under Add users or groups to the global entitlement
    • select Add
  1. In the Find User or Group window
    • in line with Name/User Name
      • next to Starts with
        • enter Developers
    • under Description
      • select Find
    • under Name
      • next to sales
        • select the checkbox
    • in the bottom right-corner
      • select OK
  1. In the Add Global Entitlement window
    • select Next
  1. In the Add Global Entitlement window
    1. Ready to Complete section
      • in the bottom right-corner
        • select Finish
  1. In the Global Entitlements window
    • select Enterprise Corp Sudoku
  1. In the Enterprise Corp Sudoku window
    • select the Local Pools tab
  1. In the Enterprise Corp Sudoku window
    • In the Local Pools tab area
      • select Add
  1. In the Assign Pools - Enterprise Corp Sudoku window
    • under ID
      • next to Sudoku
        • select the checkbox
    • select Add
  1. In the VMware Horizon Admin console
    • Note your Global Entitlement now has a local assignment
    • called Sudoku
    • In menu pane
      • under Inventory
        • select Global Entitlements
Step 3. Adding Terminal to Global Entitlements for Site 1
  1. In the Global Entitlements area
    • select Add
  1. In the Add Global Entitlement window
    • next to :
      1. Type
        • Next to Application entitlement
          • select the radio button
    • In the bottom right-corner
      • select Next
  1. In the Add Global Entitlement window
    • next to :
      1. Name and Policies
        • under Name
          • enter Enterprise Corp Terminal
        • under Display Name
          • enter Terminal
  1. In the Add Global Entitlement window
    • next to :
      1. Name and Policies
        • under Policies > Scope
          • select the radio button
            • All Sites
        • under Default Display Protocol
          • from the dropdown
            • select VMware Blast
          • below Allow Users to Choose Protocol
            • from the dropdown
              • select NO
          • next to Pre - Launch
            • select the Checkbox
        • In the bottom right-corner
          • select Next
  1. In the Add Global Entitlement window
    • next to :
      1. Users and Groups
        • under Add users or groups to the global entitlement
          • select Add
  1. In the Find User or Group window
    • in line with Name/User Name
      • next to Starts with
        • enter Sales
    • under Description
      • select Find
    • under Name
      • next to sales
        • select the checkbox
    • in the bottom right-corner
      • select OK
  1. In the Add Global Entitlement window
    • next to :
      • Users and Groups
        • under Add users or groups to the global entitlement
    • select Add
  1. In the Find User or Group window
    • in line with Name/User Name
      • next to Starts with
        • enter Developers
    • under Description
      • select Find
    • under Name
      • next to sales
        • select the checkbox
    • in the bottom right-corner
      • select OK
  1. In the Add Global Entitlement window
    • select Next
  1. In the Add Global Entitlement window
    1. Ready to Complete section
      • in the bottom right-corner
        • select Finish
  1. In the Global Entitlements window
    • select Enterprise Corp Terminal
  1. In the Enterprise Corp Terminal window
    • select the Local Pools tab
  1. In the Enterprise Corp Terminal window
    • In the Local Pools tab area
      • select Add
  1. In the Assign Pools - Enterprise Corp Terminal window
    • under ID
      • next to Terminal
        • select the checkbox
    • select Add
  1. In the VMware Horizon Admin console
    • Note your Global Entitlement now has a local assignment
    • called Terminal

In preparation for Section 2, switch over to your Site 2 Browser

Section 2. Configuring Global Entitlements for Published Applications on Site 2

Use your Site 2 Browser in this section

  1. On your Site 2 Browser
    • Horizon Admin Console login
      • In the Username area
        • enter administrator
      • In the Password area
        • enter VMware1!
      • select Sign in
  1. In the Horizon Admin console
    • Menu pane
      • below Inventory
        • select Global Entitlements
Step 1. Adding Calculator to Global Entitlements for Site 2
  1. In the Global Entitlements window
    • select Enterprise Corp Calculator
  1. In the Enterprise Corp Calculator window
    • select the Local Pools tab
  1. In the Enterprise Corp Calculator window
    • In the Local Pools tab area
      • select Add
  1. In the Assign Pools - Enterprise Corp Calculator window
    • under ID
      • next to Calculator
        • select the checkbox
    • select Add
  1. In the VMware Horizon Admin console
    • Note your Global Entitlement now has a local assignment
      • called Calculator
    • In menu pane
      • under Inventory
        • select Global Entitlements
Step 2. Adding Sudoku to Global Entitlements for Site 2
  1. In the Global Entitlements window
    • select Enterprise Corp Sudoku
  1. In the Enterprise Corp Sudoku window
    • select the Local Pools tab
  1. In the Enterprise Corp Sudoku window
    • In the Local Pools tab area
      • select Add
  1. In the Assign Pools - Enterprise Corp Sudoku window
    • under ID
      • next to Sudoku
        • select the checkbox
    • select Add
  1. In the VMware Horizon Admin console
    • Note your Global Entitlement now has a local assignment
    • called Sudoku
    • In menu pane
      • under Inventory
        • select Global Entitlements
Step 3. Adding Terminal to Global Entitlements for Site 2
  1. In the Global Entitlements window
    • select Enterprise Corp Terminal
  1. In the Enterprise Corp Terminal window
    • select the Local Pools tab
  1. In the Enterprise Corp Terminal window
    • In the Local Pools tab area
      • select Add
  1. In the Assign Pools - Enterprise Corp Terminal window
    • under ID
      • next to Terminal
        • select the checkbox
    • select Add
  1. In the VMware Horizon Admin console
    • Note your Global Entitlement now has a local assignment
    • called Terminal

Part 5. Integrating Multi-session apps with Workspace ONE Access

In Part 5

  • We will create Deep Links that will point to the Published Multi session Applications
  • Each Web App link will then be assigned to the relevant security groups

Part 6 Testing Multi-Session Horizon integration with Workspace ONE Access using CPA Global Entitlements

We will conclude this entire lab with a test to validate the configuration we have implemented

Testing Multi-session Horizon Integration with Workspace ONE Access
  1. On your Control Center server
    • On your Chrome browser
      • Open up an Incognito session
      • In the address bar enter your Workspace ONE Access tenant url
  1. In the Microsoft Sign in window
    • enter
      • craig@corpXXX.euc-livefire.com
        • where XXX is your assigned Domain ID
  • select Next
  1. In the Microsoft Sign in window
    • Under  Enter password
      • enter VMware1!
    • select Sign in
    • In the Stay signed in? window
      • select NO
  1. In the web Intelligent Hub
    • Select Apps
  1. In the web Intelligent Hub
    • Under New Apps
      • select Enterprise Corp Calculator
  1. On your ControlCenter session
    • Note your Calculator has launched
    • Feel free to try launch Sudoku & Terminal

0 Comments

Add your comment

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.