Mariano Carro / mariano.carro@microsoft.

com
Natalia Jimenez / najimene@microsoft.com
 Windows apps & Deployment
desktops anywhere flexibility
Enable users to access Windows
applications and desktops from
any device and any location
Cost
reduction
On-premises, Consolidate infrastructure
cloud-based, or Improve efficiency
hybrid deployments
Secure & extensible
platform
Protect sensitive corporate data
Build customized solutions
 Microsoft Remote
Desktop Protocol

Enable Manage Protect • Session-based desktops

users access assets • Remote applications

• Personal and pooled virtual
desktops
Session-based Virtual Desktop Session-based Client desktops in the
computing infrastructure computing in the cloud cloud

Session-based desktops Access to pooled or Remote Desktop Session Windows 10 Desktops in Azure
and RemoteApp personal Virtual Desktops Host deployed on cloud
running Windows Client OS infrastructure services Create a VDI solution
Cost-effective, without large CAPEX
easy to manage High performance, Customizable with minimum
app compatibility capital expenditure

On-premises In cloud
https://docs.microsoft.com/en-us/windows-server/remote/remote-desktop-services/clients/remote-desktop-clients
 Increased Enhanced Optimized
performance scale for cloud

Graphics Connection broker, shared Efficient and secure

improvements SQL connections architecture
 RD CLIENTS

FIREWALL

RD WEB ACCESS

RD GATEWAY
FIREWALL

RD CONNECTION BROKER

DATABASE

RD SESSION HOSTS

RD LICENSE SERVER

FILE ACTIVE
STORAGE DIRECTORY
 Public Internet

Ext Load Balancer

VM

RDCB RDLS RDGW RDWeb

Virtual Network

UPD Storage
AAD DS File Server
(UPD, etc.) RDSH
 Public Internet

Ext Load Balancer

VM
VM

RDCB RDLS RDGW RDWeb

Virtual Network

UPD Storage
AAD DS Azure SQL DB File Server
(UPD, etc.) RDSH
 1.

Ext Load Balancer

VM

RDCB RDLS RDGW RDWeb

Virtual Network

VM

AD
RDSH
New with Windows Server 2016 RD Connection Broker!
Why? Azure SQL DB significantly lowers cost and complexity.

AlwaysOn Avail Group

Azure SQL
Database
(PaaS)

https://docs.microsoft.com/en-us/windows-server/remote/remote-desktop-services/rds-connection-broker-cluste
Reduces complexity
Provides built-in sync with AAD

RDS/Azure w/o AAD DS RDS/Azure w/ AAD DS

Availability Set
AAD DS
(PaaS)

Manage user accounts w/ AD Manage user accounts w/ AAD

https://docs.microsoft.com/en-us/windows-server/remote/remote-desktop-services/rds-azure-adds
Why?
• Reduce attack surface. RDGW and RDWeb move inside the firewall
• Eliminate the need to place domain joined GW in the DMZ
• For small deployments, combine RD CB, GW, Web, Lic on same VM.

AAD AP
Internet Internet (PaaS)

https://docs.microsoft.com/en-us/azure/active-directory/application-proxy-publish-remote-desktop
 HA RDS / Azurev1 : RDS12R2
Public Internet

Azure Services
Management Interfaces Load Balancer/VPN

Tenant1 Cloud Service

VM ...

Desktop Hosting Service

VM VM
Other VM
Tenant SQL
SQL RDGW RDWeb
Services

AD RDLic RDCB RDSH

VM
AD RDSH
VM
VM VM VM
Desktop/RemoteApp

RDS 2012R2 Infra:

VM Collection

6 Role Services Compute

Azure Fabric

8 VMs Storage

$98 /user /mo

Network
 HA RDS / Azurev2: RDS2016 + AzSqlDb
Public Internet

Azure Services
RDS 2016 Infra: Management Interfaces Public Networking Infrastructure

5 Role Services
6 VMs Tenant1 Resource Group Ext Load Balancer
...
$43 /user /mo
VM

Desktop Hosting Service

VM
Other
Tenant Azure SQL RDGW RDWeb
Services Database

AD RDLic RDCB RDSH

VM
AD RDSH
VM
VM VM VM
Desktop/RemoteApp

RDS 2012R2 Infra:

VM Collection

6 Role Services Compute

Azure Fabric

8 VMs Storage

$98 /user /mo

Network
 HA RDS / Azurev2: RS2016 + AAD DS
Public Internet

Azure Services
RDS 2016 Infra: Management Interfaces Public Networking Infrastructure

4 Role Services
4 VMs Tenant1 Resource Group Ext Load Balancer
...
$38 /user /mo
VM

Desktop Hosting Service

VM
Other
Tenant Azure SQL RDGW RDWeb
Services Database

AAD
Domain RDLic RDCB RDSH
RDSH
Services VM
VM VM
Desktop/RemoteApp

RDS 2012R2 Infra:

VM Collection

6 Role Services Compute

Azure Fabric

8 VMs Storage

$98 /user /mo

Network
 Public Internet

AAD AP

Azure Services
Management Interfaces Public Networking Infrastructure

Tenant1 Resource Group

VM ...

Desktop Hosting Service

AP
Connector VM
Other
Tenant Azure SQL RDGW RDWeb
Services Database

AAD
Domain RDLic RDCB RDSH
RDSH
Services VM
VM VM
Desktop/RemoteApp
VM Collection

Compute
Azure Fabric

Storage

Network
 HA RDS / Azurev2: RS2016 + AAD AP (2)
Public Internet

AAD AP

Azure Services
RDS 2016 Infra: Management Interfaces Public Networking Infrastructure

4 Role Services
2 VMs Tenant1 Resource Group
...
$33 /user /mo
VM

Desktop Hosting Service

AP
Connector
VM

RDLic RDCB RDGW RDWeb

Other AAD Azure SQL

Tenant Domain Database RDSH
RDSH
Services Services VM
VM
Desktop/RemoteApp

RDS 2012R2 Infra:

Collection

7 Role Services Compute

Azure Fabric

8 VMs Storage

$98 /user /mo

Network
Storage Spaces Direct (S2D) enables Scale-out File Server (SOFS) in Azure VMs

HA RDS requires HA domain-joined file server for UPDs

WS12R2/Azure WS16/Azure
S2D SOFS in Availability Set

File Server VM File Server VM

UPD UPD
Users Total (GB) VM # Data Disk Type Disk Size (GB) Configuration
Disks
10 50 D1 1 P10 128 2x (D1 + 1 P10)
25 125 D1 1 P10 128 2x (D1 + 1 P10)
50 250 D1 2 P10 128 2x (D1 + 2 P10)
100 500 D1 1 P20 512 2x (D1 + 1 P20)
250 1250 D1 2 P30 1024 2x (D1 + 2 P30)
500 2500 D2 3 P30 1024 2x (D2 + 3 P30)
1000 5000 D3 5 P30 1024 2x (D3 + 5 P30)
2500 12500 D4 13 P30 1024 2x (D4 + 13 P30)
5000 25000 D5 25 P30 1024 2x (D5 + 25 P30)
 Public Internet

Management Interfaces Public Networking Infrastructure

Azure Services

S2D SOFS in Tenant1 Resource Group Ext Load Balancer

Availability Set VM VM ...
VM VM
Other
Tenant RDCB RDLS RDGW RDWeb
Services

Desktop Hosting
Service

AAD Azure SQL File

Domain File RDSH
Database Server RDSH
Services VMServer VM
VM VM
Desktop/RemoteApp
Collection

Azure Fabric Compute Storage Network

https://aka.ms/rdsonazure.userprofile
Windows Windows Server 2012 R2
Server
Connection Broker License Server Gateway Web Access Session Host
2016
Connection Broker Not supported NA Supported Supported Supported
License Server NA Not supported NA NA Supported
Gateway Supported NA Not supported NA Supported
in HA
Web Access Supported NA NA Not supported NA
Session Host Supported Not supported Supported NA Supported in
separate
collections

https://aka.ms/rd2016upgrade
 On-prem only Azure and On-prem
Feature RemoteFX vGPU Direct device assignment
Device GPU Assignment Para-virtualized 1-1 assignment to GPU
Scale Best scale / 1 GPU to many VMs Low scale / 1 or more GPUs to 1 VM
App compatibility DX 11.1, OpenGL 4.4, OpenCL 1.1 All GPU capabilities provided by vendor (DX 12, OpenGL, CUDA, etc)

AVC444 Enabled By default (Windows 10 & WS2016) Available through Group Policy (Windows 10 & WS2016)
GPU VRAM Up to 1 GB VRAM / 4k resolution GPU / Azure’s N-Series VMs supported
Frame Rate ~30fps ~60fps
GPU driver in guest RemoteFX 3D adapter display driver (Microsoft) GPU vendor driver (NVIDIA, AMD, Intel)

Guest OS support WS2012R2, WS2016, Windows 7 SP1, Windows 8.1, Windows 10 WS2012R2, WS2016 (multi-session), Windows 10*, Linux

Hypervisor Microsoft Hyper-V

Host OS availability WS2012R2, WS2016, Windows 10 WS2016
GPU hardware “Enterprise” GPUs (Quadro, GRID)
Server hardware No special requirements Modern server, exposes IOMMU to OS (SR-IOV compliant HW)
 NV6 NV12 NV24

GPU-enabled VMs in Azure Cores* 6 12 24

1 x M60 GPU 2 x M60 GPU 4 x M60 GPU

GPU (1/2 Physical (1 Physical (2 Physical
Card) Card) Cards)
Run as a single VDI instance or
RD Session Host server Memory 56 GB 112 GB 224 GB

Disk ~380 GB SSD ~680 GB SSD ~1.5 TB SSD

*Intel E5-2690v3
Security: RDS-hosted environments can use authentication with Azure Active Directory, providing:
• Conditional Access policies
• Multifactor Authentication
• Integrated authentication with other SaaS Apps using Azure AD
• Ability to get security signals from the Intelligent Security Graph.
• Isolate the infrastructure roles (Gateway, Web, connection broker and others) from the desktop and app
deployment hosts.

Cloud readiness: Innovations in the existing RD infrastructure roles:

• Web, Gateway, Connection Broker, Licensing – see how to take advantage of the elasticity and scale
capabilities of Azure.
• New Diagnostics role that helps you monitor your deployment effectively.

Windows apps on ANY device:

• Support for HTML5 browser-delivered experiences.

https://cloudblogs.microsoft.com/enterprisemobility/2017/09/20/first-look-at-updates-coming-to-remote-desktop-services
 Traditional Cloud Cloud

On-prem / IaaS Service Provider

Traditional installable Comprehensive Hybrid Simple, Secure, cloud- Simplest way to publish
Package End-to-end virtual apps Simple Window 10 VDI
software for complete IT virtual apps & based web-browser remote applications in
Description control
and desktops solution
desktop service solution
on Azure
the cloud
Citrix Infra.
IT Dept. Partner Citrix Citrix Citrix Citrix
Management
Workload
IT Dept. / Partner Partner IT Dept. / Partner Managed by Citrix IT Dept. / Partner IT Dept. / Partner
Management
Perpetual + Subscription Subscription Subscription Subscription Subscription
Licensing
Maintenance (varies) (user/year) (user hours) (User/month) (User/month)
Private cloud or Public Private, Partner,
Cloud Partner Cloud Citrix Selected Azure-only Azure-only
IaaS Public IaaS

RTM Normal Channel Normal Channel Normal Channel Normal Channel Azure Marketplace Azure Marketplace
Enterprises deploying VDI Windows 10 Windows 10 & Cloud

Cost Savings
Windows 7 User Experience

Proximity

Windows 8 Security
Flexibility
XenDesktop Essentials Service on Azure

• Citrix Cloud is hosted on Azure

• New XenDesktop service manages,
monitors and provisions Windows 10
XenDesktop Essentials Enterprise CBB virtual desktops on
Azure

• Customers under Windows EA/SA

• Windows 10 Enterprise CBB per user
license
• Customer brings Windows 10
Enterprise CBB license

• Customer brings Azure subscription

• Customer pays for IaaS consumption for
Windows 10 Enterprise CBB virtual
desktops
 Controller Site DB StoreFront

Citrix Cloud Operated by Citrix

Sold through
Azure Marketplace
XenDesktop Essentials
Citrix Cloud

Customer Subscription

Windows Windows
Server Server
Server
10 Server
10
VDAs VDAs
VDAs VDAs
Customer managed Customer also pays
Azure subscription for IaaS consumption
Customer’s Azure Subscription
 License
Studio Director
Server
New XenDesktop Essentials
(operated by Citrix)

StoreFront/
Delivery
Receiver for SQL
Controllers
Web

Connector
Connector
Customer/Partner
managed Azure
NetScaler Windows
Server
Windows
Server
subscription
Gateway 10
Server 10
Server Active
VDAs VDAs Directory
VDAs VDAs

Azure
 Microsoft
Citrix Microsoft Citrix HDX
Windows
Cloud Azure
Apps

Delivered from Citrix Windows apps to any App Workloads run in Superior in-session experience
Cloud device Azure
All supported Citrix Receivers
Simplified management Bring your own Windows Azure Resource Manager
images

Sold through Azure Marketplace

Citrix XenApp Essentials Service

• XenApp Essentials is delivered via Citrix

Cloud
XenApp Essentials • New XenApp Essentials simplifies the
delivery of Windows Apps from Azure

• Customer brings Windows Server Images

with Apps installed or chooses Citrix
Windows Remote Desktop prepared images
Services • Customer Brings RDS CALs w/ SA to Azure
or buys RDS SALs

• Customer brings Azure subscription

• Customer pays for IaaS consumption
• (App Workloads, Storage, etc.)
 Controller NSG StoreFront

Citrix Cloud Operated by Citrix

Sold through
Azure Marketplace
XenApp Essentials
Citrix Cloud

Customer Subscription

Windows Windows
Server Server
Server
App Server
App
VDAs VDAs Customer managed Customer also pays
VDAs VDAs
Azure subscription for IaaS consumption
Customer’s Azure Subscription
 Client Remote
Service Providers Desktop Services

SAL’s (SPLA) CAL’s (Active SA)

Subscriber Access Licenses Effective January 2014.

Microsoft Services Provider License Agreement reseller Active Software Assurance on CALs
Extended Rights to Azure

https://azure.microsoft.com/en-us/pricing/licensing-faq
 XenDesktop Essentials (XDE) XenApp Essentials (XAE)

• Helps deliver Windows 10 desktops hosted in Azure • Helps deliver Windows apps hosted in Azure
• Customer brings their own Win 10 license & leverages • Alternative to Azure Remote App (end-of-life Aug 2017)
AHUB • Cost to customer:
• Cost to customer: $12/user/month*
$12/user/month* + optional data transfer packs at $12/25GB/mo*
+ Azure IaaS consumption + $6.25/user/month Remote Access fee¥
+ Azure IaaS consumption
Activate your Azure Account:
https://azure.microsoft.com/en-us/offers/ms-azr-0044p/

Build your basic RDS environment in 30 minutes:

https://docs.microsoft.com/en-us/windows-
server/remote/remote-desktop-services/rds-in-azure
Welcome to Remote Desktop Services

Remote Desktop Services architecture

First look at updates coming to Remote Desktop Services

Azure Free Trial

Seamlessly deploy RDS with ARM and Azure Marketplace

Remote Desktop Services - Integrating with Azure services

Citrix on Azure
 Build the Intelligent Cloud

Additional Steps
Get the most out of your Azure IUR benefit
Ensure your organization is leveraging your Azure IUR benefit to learn first-hand about the solution.
Step 1:
Learn how to implement the key Azure workloads: aka.ms/AzureIURWorkload

Take the next step in your technical journey

Let us guide you through a suite of technical services to help you accelerate sales and deployments.
Step 2:
Go further into your journey at: aka.ms/BuildIntelligentCloud

Get deeper personalized technical assistance

Make the learnings a reality by engaging with a Microsoft expert to go deeper in related customer scenarios.
Step 3:
Submit an advisory request*: aka.ms/PresalesDeploymentRequest

*Requires access to the Microsoft Partner Network portal. To associate to your organization’s MPN account, follow the steps at http://aka.ms/SimplifiedAssociation.
http://aka.ms/mpnsupport latampts@microsoft.com http://aka.ms/supportcommunities

Permítanos ayudarle con sus proyectos.

Solicite Asesoría a Preventa Técnica o Implementación aquí: http://aka.ms/MySupport
o escribanos a latampts@microsoft.com

¿Quiere expandir sus capacidades técnicas?

Vaya a http://aka.ms/TechnicalServices y seleccione la tecnología de su preferencia.
Le ofrecemos una guía de aprendizaje para ayudarle en su jornada.
• Consulte el Blog de socios LATAM en español.
• http://aka.ms/LATAMPTS

Nuestro Buzón: latampts@Microsoft.com

© 2017 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries.
The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market
conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation.
MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.