9. Horizon Linux Multi-Session Farms

Linux can and has been a fundamental platform for developers to work from. From a licensing perspective, in many cases organization like to keep costs down in favour and would then consider Linux as an alternative. The Linux integration with VMware Horizon is not well documented. Like the Windows Operating system where we have both Virtual Desktop infrastructure and RDS Published applications, Linux too has a Virtual Desktop and Application based offering. In this session we will look at the RDS equivalent of Linux, that being Linux Multi-Session. One of the objectives in this guide is take you through step by step to deploy a Linux based Multi-Session Farm and then have Published Applications.

Full credit to Rahul Jha in the TECHSEALS team to bring together the underlying requirements to make this work

Part 1. Preparing an Ubuntu base for Horizon Linux Multi - Session for Site 2

We will complete the following tasks

  • We domain join the Linux Master
  • We configure TrueSSO for Linux Master
  • We install the Horizon Agent
Section 1. Domain joining the Linux Master
  1. On your Control Center server
    • open your Site 2 Chrome Browser
      • on the Favourites Bar
        • select the vcenter-01a shortcut
  1. In the VMware vSphere client area
    • In the username area
    • In the password area
      • enter Pa$$w0rd
    • At the bottom of the screen
      • select LOGIN
  1. In the VMware vSphere client
    • In the Hosts & Clusters Inventory
      • select the LinuxMaster-1a virtual machine
        • Note: Power on the LinuxMaster-1a if it's off
    • In the Virtual Machine Details area
      • Next to IP Addresses (2)
        • make a note of YOUR specified assigned DHCP IP address
          • Note: In the example its 172.16.10.151
    • Minimize your Site 1 Chrome Browser
  1. On the ControlCenter server desktop
    • Select and launch the Putty shortcut
  1. In the Putty Configuration window
    • under Host Name (or IP address)
      • enter Your DHCP IP address for LinuxMaster-1a
    • under Saved Sessions
      • enter LinuxMaster-1a
    • in the Saved Sessions area under Load
      • select Save
    • select Open
  1. In the Putty Window
    • next to login as:
      • enter vmware
    • next to password:
      • enter Pa$$w0rd
    • with your keyboard
      • select ENTER
  1. In the Putty window
    • enter sudo nano /etc/hosts
    • next to password for vmware:
      • enter Pa$$w0rd
  1. In the Putty window
    • verify  in line 2 that we have already appended
      • linuxmaster-1a.techseals.co
      • linuxmaster-1a
    • with your keyboard
      • press CTRL + X

9. In the Putty window

  • enter 
sudo apt-get update
  • when prompted for password
    • enter Pa$$w0rd
  1. In the Putty window
    • Install the Winbind and Samba packages
      • enter the following command
sudo apt install samba krb5-config krb5-user winbind libpam-winbind libnss-winbind
  • enter to install.
Y
  • validate that winbind is already installed and its the newest version
sudo apt install tdb-tools
  1. In the Putty window
    • enter the following command
sudo nano /etc/samba/smb.conf
  1. In the Putty window
    • with your Keyboard,
      • move your Cursor down until its two spaces
        • below [global]
  1. In the Putty window
    • Copy the following from below
security = ads
realm = TECHSEALS.CO
workgroup = TECHSEALS.CO
idmap uid = 10000-20000
idmap gid = 10000-20000
winbind enum users = yes
winbind enum groups = yes
template homedir = /home/%D/%U
template shell = /bin/bash
client use spnego = yes
client ntlmv2 auth = yes
encrypt passwords = yes
winbind use default domain = yes
restrict anonymous = 2
kerberos method = secrets and keytab
winbind refresh tickets = true
  • Paste in your Putty console
  1. In the Putty window
    • using your keyboard,
      • move  your Cursor down,
        •  until you find workgroup = WORKGROUP
      • replace WORKGROUP with TECHSEALS
  1. In the Putty window
    • To save the smb.conf
      • using your keyboard,
        • enter CTRL + X
        • press Y
        • press Enter
  1. In the Putty window
    • to restart the smbd.service
sudo systemctl restart smbd.service
  1. In the Putty window
    • enter the following command
sudo nano /etc/krb5.conf
  1. In the Putty window
    • In the [libdefaults] section
      • using your keyboard,
        • move the cursor below default_realm = TECHSEALS.CO
      • paste the following 
dns_lookup_realm = true
dns_lookup_kdc = true
  1. In the Putty window
    • using your Keyboard,
      • move your cursor down
        • until you find {realms}
      • leave your cursor
        • over the ATHENA.MIT.EDU
    • with your Keyboard
      • press ENTER
        • press the TAB key
          • move your cursor one row up
  1. In the Putty window
    • above ATHENA.MIT.EDU
      • type in the following
TECHSEALS.CO = {
                kdc = controlcenter.techseals.co
                admin_server = controlcenter.techseals.co
        }
  1. In the Putty window
    • move your Cursor down
      • to {domain_realm}
    • open a new row,
      • between {domain_realm} and .mit.edu = ATHENA.MIT.EDU
  1. In the Putty window
    • Below {domain_realm}
      • type the following
techseals.co = TECHSEALS.CO
.techseals.co = TECHSEALS.CO
  1. In the Putty window
    • using your keyboard,
      • enter CTRL + X
        • press Y
      • press Enter
  1. In the Putty window
    • enter the following command
sudo nano /etc/nsswitch.conf
  1. In the Putty window
    • change the following to
      • next to: 
passwd:     files winbind
group:      files winbind
shadow:     files winbind
  • enter CTRL + X
    • press Y
  • press Enter
  1. In the Putty window
    • enter the following command
sudo kinit administrator
  1. In the Putty window
    • enter the following command
sudo klist
  • with your keyboard
    • press ENTER
  1. In the Putty window
    • enter the following command
sudo net ads keytab create -U administrator
  • next to Password for [TECHSEALS.CO\administrator]:
    • type Pa$$w0rd
  1. In the Putty window
    • enter the following command
sudo net ads join -U administrator
  • next to Password for [TECHSEALS.CO\administrator]:
    • type Pa$$w0rd
  1. In the Putty window
    • enter the following command
sudo systemctl restart winbind.service
  1. In the Putty window
    • enter the following command
wbinfo -u
  • with your keyboard
    • press Enter
  1. In the Putty window
    • enter the following command
wbinfo -g
  • with your keyboard
    • press Enter
  1. In the Putty window
    • enter the following command
sudo reboot
  1. In the Putty window (inactive)
    • select the top left corner icon
      • from the drop down menu
        • select Restart Session
  1. In the Putty window
    • next to login as :
      • enter vmware
        • with your keyboard
          • press ENTER
    • next to password :
      • enter Pa$$w0rd
        • with your keyboard
          • press ENTER
Section 2. Configure TrueSSO for Ubuntu Desktop
  1. On your Ubuntu desktop,
    • to install the pkcs11  support package
      • in the Putty session enter 
sudo apt install libpam-pkcs11
  • when prompted for password
    • enter Pa$$w0rd
  1. On your Ubuntu desktop,
    • to Install the libnss3-tools  package
      • In the Putty session enter 
sudo apt install libnss3-tools
  • with your keyboard
    • press ENTER
  1. On your ControlCenter server
    • select the START button
      • in the menu
        • select Window Administrative tools
  1. In the Administrative Tools area
    • select Certificate Authority
  1. In the Certificate Authority console
    • select & right-click techseals-CONTROLCENTER-CA
      • in the drop menu
        • select Properties
  1. In the CONTROLCENTER-CA Properties
    • select View Certificate
    • In the Certificate window
      • select the Details tab
  1. In the Certificate > Details tab
    • select Copy to File....
  1. In the Welcome to the Certificate Export Wizard page
    • select Next
  1. In the Certificate Export Wizard
    • Export File Format page
      • next to DER encoded X.509 (.CER)
        • select the radio button
      • select Next
  1. In the Certificate Export Wizard
    • File to Export page
      • select Browse..
        • browse to C:\certificates\
          • next to File name:
            • enter certificate
              • select Save
      • select Next
  1. In the Certificate Export Wizard
    • Completing the Certificate Export Wizard page
      • select Finish
    • to close the The export was successful message and Export wizard
      • select OK
    • to close the Certificate window
      • select OK
    • to close the techseals-CONTROLCENTER-CA Properties  window
      • select OK
    • Close the Certsrv admin console
  1. On your ControlCenter server Taskbar
    • in the search area
      • enter WinSCP
    • launch your WinSCP client
  1. In the WinSCP client
    • below Host name:  
      • enter your Linux Master IP address
    • below User name:
      • enter vmware
    • below Password
      • enter Pa$$w0rd
    • select Login
    • In the Warning window
      • select Yes
  1. In the WinSCP client
    • select the UP arrow twice
  1. In the WinSCP client
    • select and open the tmp folder
  1. On the Controlcenter server
    • from the desktop, Taskbar
      • open the folder Icon
        • browse to C:\  > Certificates
  1. On the Controlcenter server
    • from the C:\Certificates folder
      • select and drag certificate.cer to WinSCP /tmp/ folder
    • in the Upload window
      • select OK
  1. In your Putty Ubuntu desktop session,
    • to locate the root CA certificate that you downloaded,
      • enter the following commands
cd /tmp 
ls
  • you should see the certificate.cer certificate
  1. On your Putty Ubuntu desktop session,
    • convert the CER file to . PEM format
      • this will also serve to validate the file format
        • in the Putty session enter the following commands
sudo openssl x509 -inform der -in /tmp/certificate.cer -out /tmp/certificate.pem
  • once the file is converted, run the following command to validate
ls
  1. On your Putty Ubuntu desktop session,
    • make an /etc/pki/nssdb directory to contain the system database
sudo mkdir -p /etc/pki/nssdb

 

  1. On your Putty Ubuntu desktop session,
    • to use the certutil  command to install the root CA certificate to the system database/etc/pki/nssdb
      • enter 
sudo certutil -A -d /etc/pki/nssdb -n "root CA cert" -t "CT,C,C" -i /tmp/certificate.pem
  1. On your Putty Ubuntu desktop session,
    • copy the root CA certificate to the/etc/pam_pkcs11/ca certs  directory.
      • execute two commands one after the other 
mkdir -p /etc/pam_pkcs11/cacerts 
sudo cp /tmp/certificate.pem /etc/pam_pkcs11/cacerts
  1. On your Putty Ubuntu desktop session,
    • to create a hash link for the root CA certificate. .
      • enter the following commands 
cd /etc/pam_pkcs11/cacerts
sudo pkcs11_make_hash_link
Section 3: Deploying the Linux Horizon Agent
  1. In the WinSCP window
    • In the right pane navigate to
      • next to tmp
        • navigate Up one level
          • from the dropdown
            • select /<root>
          • in the folder heirarchy of root
            • open home
          • in the folder heirarchy of home
            • open vmware
          • in the folder heirarchy  of vmware
            • select Downloads
  1. On the ControlCenter server desktop
    • open the software shortcut
      • open the Horizon > Linux folder
        • select  VMware-horizonagent-linux-x86_64-2312-8.12.0-23145208.tar.gz right-click
          • select Copy
        • switch back to WinSCP
  1. In the WinSCP window
    • In the right pane
      • select and right-click to launch the menu
        • select Paste
      • In the Upload window
        • select OK
    • switch back to your Putty session
  1. In your Putty Ubuntu desktop session,
    • enter the following command:
sudo apt install open-vm-tools-desktop open-vm-tools
  • with your keyboard
    • press ENTER
      • If necessary
        • next to password for vmware:
          • enter Pa$$w0rd
        • from the output
    • validate that open-vm-tools is installed and you have the latest version
  1. In your Putty Ubuntu desktop session,
    • with your keyboard
      • type
cd /home/vmware/Downloads/
  • In the /Downloads$ path
  • with your keyboard
    • type
 ls -l
  • Press ENTER
  • type 
tar -zxvf VMware-horizonagent-linux-x86_64-2312-8.12.0-23145208.tar.gz

Note: The above command will extract the files from the compressed agent bundle

  1. In  your Putty Ubuntu desktop session,
    • /Downloads$
      • with your keyboard
      • to list the files
        • type
 ls
  • type
 cd VMware-horizonagent-linux-x86_64-2312-8.12.0-23145208
  • press ENTER
  1. In your Putty Ubuntu desktop session,
    • Install the Linux Agent with TrueSSO Mode and Multi-session mode enabled
      • type 
sudo ./install_viewagent.sh --multiple-session -T yes
  • with your keyboard
    • Press ENTER
      • if prompted [sudo] password for vmware:
        • type Pa$$w0rd
          • Press ENTER
      • when prompted, Are you sure to install Linux agent (y/n)?
        • type 
Y
  • Press ENTER

Once the agent installation is complete, a message will show up

  • Installation Done
  1. In your Putty Ubuntu desktop session,
    • type 
sudo nano /etc/vmware/viewagent-custom.conf
  • press ENTER
  1. In your Putty Ubuntu desktop session,
    • NANO console
      • using your keyboard,
        • navigate your cursor to the bottom of this window
        • below
          • #AppEnable=FALSE
          • insert the following
OfflineJoinDomain=samba
NetbiosDomain=TECHSEALS
  • using your keyboard
    • to EXIT
      • press CTRL + X
    • to SAVE
      • press Y
    • press ENTER
  1. On  ControlCenter server desktop
    • select the Software shortcut
      • in the Software share
        • browse to \Horizon\Linux
          • in the Linux folder
            • select and copy pam_pks11.conf
  1. On  ControlCenter server
    • switch to WinSCP
      • In WinSCP
        • from /home/vmware/Downloads
          • from the dropdown
            • browse UP to root
        • from root
          • select and open the /tmp folder
        • In the tmp folder
          • paste pam_pkcs11.conf
        • in the Upload window
          • select OK
  1. In your Putty Ubuntu desktop session,
  • enter the following
cd /tmp
sudo cp pam_pkcs11.conf /etc/pam_pkcs11/
  1. In your Putty Ubuntu desktop session,
    • modify the permission of the just copied pam_pkcs11.conf 
sudo chmod 777 /etc/pam_pkcs11/pam_pkcs11.conf
 ls -l /etc/pam_pkcs11/pam_pkcs11.conf
  1. In your Putty Ubuntu desktop session,
    • set the access permissions for the /etc/krb5.conf configuration file to 644 
sudo chmod 644 /etc/krb5.conf
 ls -l /etc/krb5.conf
Section 4. Predefining settings for seamless app launches

Many applications on first launch require a range of configurations. We will mitigate these challenges with the following command line functions

  1. In your Putty Ubuntu desktop session,
    • enter 
sudo -i
  • with your keyboard
    • press ENTER
  • if prompted for password for vmware:
    • enter Pa$$w0rd
  1. In your Putty Ubuntu desktop session,
    • enter  
cd /etc/
  • with your keyboard
    • press ENTER
  • enter 
mv skel skel.bak
  • with your keyboard
    • press ENTER
  1. In your Putty Ubuntu desktop session,
    • enter  
cp -R /home/vmware skel
  • with your keyboard
    • press ENTER
  • enter 
ls skel
  • with your keyboard
    • press ENTER
  1. In your Putty Ubuntu desktop session,
    • enter 
 chown root:root -R skel
  • with your keyboard
    • press ENTER
  • enter 
reboot
  • with your keyboard
    • press ENTER
  1. In the Putty window (inactive)
    • select the top left corner icon
    • From the drop down menu
      • select Restart Session
  1. In your Putty Ubuntu desktop session,
    • next to login as :
      • enter vmware
        • with your keyboard
          • press ENTER
      • next to password :
        • enter Pa$$w0rd
          • with your keyboard
            • press ENTER
  1. In your Putty Ubuntu desktop session,
    • enter
sudo shutdown
  • when prompted for password
    • enter
  • Pa$$w0rd
  1. On your ControlCenter server
    • close out the following windows
      • PUTTY
      • WINSCP
      • FILE Explorer
      • Notepad++

Part 2. Configuring Horizon to Deploy a Linux Multi-Session Farm for Site 2

Introduction. We will configure the following

  • Configure the Linux Farm for Site 2
Configuring the Linux Farm
  1. On your ControlCenter server
    • open your Site  2 Chrome Browser
      • in the Favourites Bar
        • select the vcenter-02a shortcut
        • under Getting Started
          • select LAUNCH VSPHERE CLIENT
  1. In the vSphere client
    • In the Username area
    • In the Password area
      • type Pa$$w0rd
    • select LOGIN
  1. In the vSphere client
    • Hosts & Clusters Inventory
      • select LinuxMaster-1a
        • right-click
        • In the Menu,
        • select Snapshots > Take Snapshot...
  1. In the Take snapshot window
    • next to Name
      • type Horizon Linux Agent
    • at the bottom of the window
      • select CREATE
  1. On your Site 2, Chrome Browser
    • In the Favourites Bar
      • select the Horizon Site 2 shortcut
  1. In the Horizon Login Console
    • In the Username area
      • enter administrator
    • In the Password area
      • enter Pa$$w0rd
    • select Sign In
  1. In the Horizon Admin Console
    • expand Inventory
      • select Farms
      • in the Farms area
        • select Add
  1. In the Add Farm wizard
    1. Type area
      • accept the default
        • in the bottom right corner
          • select Next
  1. In the Add Farm wizard
    1. vCenter Server area
      • accept the default
        • in the bottom right corner
          • select Next
  1. In the Add Farm wizard
    1. Storage Optimization area
      • accept the default
        • in the bottom right corner
          • select Next
  1. In the Add Farm wizard
    1. Identification and Settings area
      • configure the following:-
        • below *ID
          • enter LinuxSEAFarm
  1. In the Add Farm wizard
    1. Identification and Settings area
      • configure the following:-
        • under Farm Settings
          • Default Display Protocol
            • Blast
          • Allow Users to Choose Protocol
            • No
        • under Pre-launch Session Timeout (Applications Only)
          • select Never
        • under Empty Session Timeout (Applications Only)
          • select Immediate
        • under When Timeout Occurs
          • select Log Off
        • under Logoff Disconnected Sessions
          • select Immediate
        • under Max Sessions Per RDS Host
          • select No More Than enter 3
      • select Next
  1. In the Add Farm wizard
    1. Load Balancing Settings area
      • accept the default
        • in the bottom right corner
          • select Next
  1. In the Add Farm wizard
    1. Provisioning Settings area
      • configure the following:-
        • under *Naming Pattern
          • enter LinuxSEA-
        • under *Maximum Machines
          • enter 2
        • select Next
  1. In the Add Farm wizard
    1. vCenter Settings area
      • configure the following:-
        • under *Golden Image in vCenter
          • select Browse
        • in the Select Golden Image window
          • next to LinuxMaster-1a
            • select the radio button
        • select Submit
  1. In the Add Farm wizard
    1. vCenter Settings area
      • configure the following:-
        • under *Snapshot
          • select Browse
        • in the Select Default Image window
          • next to Horizon Linux Agent
            • select the radio button
              • select Submit
  1. In the Add Farm wizard
    1. vCenter Settings area
      • configure the following:-
        • under *VM Folder Location
          • select Browse
        • in the VM Folder Location window
          • select the Region01A
            • select Submit
  1. In the Add Farm wizard
    1. vCenter Settings area
      • configure the following:-
        • under *Cluster
          • select Browse
        • in the Select Cluster window
          • select the Seattle
            • select Submit
  1. In the Add Farm wizard
    1. vCenter Settings area
      • configure the following:-
        • under *Resource Pool
          • select Browse
        • in the Resource Pool window
          • select the Bangalore
            • select Submit
  1. In the Add Farm wizard
    1. vCenter Settings area
      • configure the following:-
        • under *Datastores
          • select Browse
        • in the Resource Pool window
          • next to CorpLun01a
            • select the radio button
        • select Submit
        • in the  Warning window
          • select OK
  1. In the Add Farm wizard
    1. vCenter Settings area
      • leave the VM Compute Profile Settings as default
      • review your configurations
      • in the bottom right corner
        • select Next
  1. In the Add Farm wizard
    1. Guest Customization area
      • configure the following:-
        • under *AD Container
          • select Browse
        • in the AD Container window
          • expand OU=Corp
            • select OU=Computers, OU=Corp
        • select Submit
  1. In the Add Farm wizard
    1. Guest Customization area
      • configure the following:-
        • under *AD Container
          • next to Allow Reuse of Existing Computer Accounts
            • select the CHECKBOX
      • In the bottom right corner
        • select Next
  1. In the Add Farm wizard
    1. Ready to Complete window
      • review your configuration
        • select Submit

Wait for at least 20 minutes for the provisioning to complete

  1. In VMware Horizon Admin Console
    • under Inventory
      • select Machines
        • In the Machines area
          • select the RDS Hosts tab
  1. In the Machines / RDS area
    • scroll to the right
    • wait & keep refreshing the page until the Status says Available for both servers

Part 3. Configuring Global Entitlements for the Multi-session Assignments

Configuring Global Entitlements for Published Applications on Site 2 for multiple PODS
  1. On your Site 2 Browser
    • Horizon Admin Console login
      • In the Username area
        • enter administrator
      • In the Password area
        • enter Pa$$w0rd
      • select Sign in
  1. In the Horizon Admin console
    • Menu pane
      • below Inventory
        • select Global Entitlements
Step 1. Adding Calculator to Global Entitlements for Site 1
  1. In the Global Entitlements area
    • select Add
  1. In the Add Global Entitlement window
    • next to :
      1. Type
        • Next to Application entitlement a
          • select the radio button
    • In the bottom right-corner
      • select Next
  1. In the Add Global Entitlement window
    • next to :
      1. Name and Policies
        • under Name
          • enter Enterprise Corp Calculator
        • under Display Name
          • enter Calculator
  1. In the Add Global Entitlement window
    • next to :
      1. Name and Policies
        • under Policies > Scope
          • select the radio button
            • All Sites
        • under Default Display Protocol
          • from the dropdown
            • select VMware Blast
          • below Allow Users to Choose Protocol
            • from the dropdown
              • select NO
          • next to Pre - Launch
            • select the Checkbox
        • In the bottom right-corner
          • select Next
  1. In the Add Global Entitlement window
    • next to :
      1. Users and Groups
        • under Add users or groups to the global entitlement
          • select Add
  1. In the Find User or Group window
    • in line with Name/User Name
      • next to Starts with
        • enter Sales
    • under Description
      • select Find
    • under Name
      • next to sales
        • select the checkbox
    • in the bottom right-corner
      • select OK
  1. In the Add Global Entitlement window
    • next to :
      • Users and Groups
        • under Add users or groups to the global entitlement
    • select Add
  1. In the Find User or Group window
    • in line with Name/User Name
      • next to Starts with
        • enter Developers
    • under Description
      • select Find
    • under Name
      • next to sales
        • select the checkbox
    • in the bottom right-corner
      • select OK
  1. In the Add Global Entitlement window
    • select Next
  1. In the Add Global Entitlement window
    1. Ready to Complete section
      • in the bottom right-corner
        • select Finish
  1. In the Global Entitlements area
    • select Enterprise Corp Calculator
  1. In the Enterprise Corp Calculator window
    • select the Local Pools tab
  1. In the Enterprise Corp Calculator window
    • In the Local Pools tab area
      • select Add
  1. In the Assign Pools - Enterprise Corp Calculator window
    • under ID
      • next to Calculator
        • select the checkbox
    • select Add
  1. In the VMware Horizon Admin console
    • Note your Global Entitlement now has a local assignment
      • called Calculator
    • In menu pane
      • under Inventory
        • select Global Entitlements
Step 2. Adding Sudoku to Global Entitlements for Site 2
  1. In the Global Entitlements area
    • select Add
  1. In the Add Global Entitlement window
    • next to :
      1. Type
        • Next to Application entitlement
          • select the radio button
    • In the bottom right-corner
      • select Next
  1. In the Add Global Entitlement window
    • next to :
      1. Name and Policies
        • under Name
          • enter Enterprise Corp Sudoku
        • under Display Name
          • enter Sudoku
  1. In the Add Global Entitlement window
    • next to :
      1. Name and Policies
        • under Policies > Scope
          • select the radio button
            • All Sites
        • under Default Display Protocol
          • from the dropdown
            • select VMware Blast
          • below Allow Users to Choose Protocol
            • from the dropdown
              • select NO
          • next to Pre - Launch
            • select the Checkbox
        • In the bottom right-corner
          • select Next
  1. In the Add Global Entitlement window
    • next to :
      1. Users and Groups
        • under Add users or groups to the global entitlement
          • select Add
  1. In the Find User or Group window
    • in line with Name/User Name
      • next to Starts with
        • enter Sales
    • under Description
      • select Find
    • under Name
      • next to sales
        • select the checkbox
    • in the bottom right-corner
      • select OK
  1. In the Add Global Entitlement window
    • next to :
      • Users and Groups
        • under Add users or groups to the global entitlement
    • select Add
  1. In the Find User or Group window
    • in line with Name/User Name
      • next to Starts with
        • enter Developers
    • under Description
      • select Find
    • under Name
      • next to sales
        • select the checkbox
    • in the bottom right-corner
      • select OK
  1. In the Add Global Entitlement window
    • select Next
  1. In the Add Global Entitlement window
    1. Ready to Complete section
      • in the bottom right-corner
        • select Finish
  1. In the Global Entitlements window
    • select Enterprise Corp Sudoku
  1. In the Enterprise Corp Sudoku window
    • select the Local Pools tab
  1. In the Enterprise Corp Sudoku window
    • In the Local Pools tab area
      • select Add
  1. In the Assign Pools - Enterprise Corp Sudoku window
    • under ID
      • next to Sudoku
        • select the checkbox
    • select Add
  1. In the VMware Horizon Admin console
    • Note your Global Entitlement now has a local assignment
    • called Sudoku
    • In menu pane
      • under Inventory
        • select Global Entitlements
Step 3. Adding Terminal to Global Entitlements for Site 2
  1. In the Global Entitlements area
    • select Add
  1. In the Add Global Entitlement window
    • next to :
      1. Type
        • Next to Application entitlement
          • select the radio button
    • In the bottom right-corner
      • select Next
  1. In the Add Global Entitlement window
    • next to :
      1. Name and Policies
        • under Name
          • enter Enterprise Corp Terminal
        • under Display Name
          • enter Terminal
  1. In the Add Global Entitlement window
    • next to :
      1. Name and Policies
        • under Policies > Scope
          • select the radio button
            • All Sites
        • under Default Display Protocol
          • from the dropdown
            • select VMware Blast
          • below Allow Users to Choose Protocol
            • from the dropdown
              • select NO
          • next to Pre - Launch
            • select the Checkbox
        • In the bottom right-corner
          • select Next
  1. In the Add Global Entitlement window
    • next to :
      1. Users and Groups
        • under Add users or groups to the global entitlement
          • select Add
  1. In the Find User or Group window
    • in line with Name/User Name
      • next to Starts with
        • enter Sales
    • under Description
      • select Find
    • under Name
      • next to sales
        • select the checkbox
    • in the bottom right-corner
      • select OK
  1. In the Add Global Entitlement window
    • next to :
      • Users and Groups
        • under Add users or groups to the global entitlement
    • select Add
  1. In the Find User or Group window
    • in line with Name/User Name
      • next to Starts with
        • enter Developers
    • under Description
      • select Find
    • under Name
      • next to sales
        • select the checkbox
    • in the bottom right-corner
      • select OK
  1. In the Add Global Entitlement window
    • select Next
  1. In the Add Global Entitlement window
    1. Ready to Complete section
      • in the bottom right-corner
        • select Finish
  1. In the Global Entitlements window
    • select Enterprise Corp Terminal
  1. In the Enterprise Corp Terminal window
    • select the Local Pools tab
  1. In the Enterprise Corp Terminal window
    • In the Local Pools tab area
      • select Add
  1. In the Assign Pools - Enterprise Corp Terminal window
    • under ID
      • next to Terminal
        • select the checkbox
    • select Add
  1. In the VMware Horizon Admin console
    • Note your Global Entitlement now has a local assignment
    • called Terminal

Part 4. Integrating Multi-session apps with Workspace ONE Access

  • We will create Deep Links that will point to the Published Multi session Applications
  • Each Web App link will then be assigned to the relevant security groups

Part 5. Testing Multi-Session Horizon integration with Workspace ONE Access using CPA Global Entitlements

We will conclude this entire lab with a test to validate the configuration we have implemented

Testing Multi-session Horizon Integration with Workspace ONE Access
  1. On your Control Center server
    • On your Chrome browser
      • Open up an Incognito session
      • In the address bar enter your Workspace ONE Access tenant url
  1. In the Workspace ONE Sign in window
    • below Select Your Domain
      • select techseals.co
    • select Next
  1. In the Workspace ONE Sign in window
    • below username
      • enter craig
    • below password
      • enter Pa$$w0rd
    • select Sign in
  1. In the web Intelligent Hub
    • select Apps
  1. In the Open VMware Horizon Client? window
    • select Open VMware Horizon Client
  1. In the web Intelligent Hub
    • under New Apps
      • select Enterprise Corp Calculator
  1. On your ControlCenter session
    • Note your Calculator has launched
    • Feel free to try launch Sudoku & Terminal

0 Comments

Add your comment

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.