private cloudPrivate cloud environments tend to be made up of a number of different components. One of the keys to building an effective private cloud environment is to understand what these components are and what they do. This article introduces beginner’s to some of the most commonly used private cloud components.

The first component that you need to be familiar with is the Web Portal. One of the challenges that administrators face when building private cloud environments is that of accepting connections from internet based clients, but without compromising security in the process. Doing so usually means creating a DMZ environment that can be used as an entry point for Internet based clients.

Typically the DMZ will contain a server that is acting as a Web portal. A Web portal is really nothing more than a Web server that has been configured to accept connections from Internet based clients.

Once a Web client has established a connection to a Web portal, the user’s ID must be authenticated. There are a number of different ways to handle the authentication process, but the chosen authentication method must take into account the fact that the DMZ is a relatively insecure environment. As such, it would be extremely risky to place a domain controller, RADIUS Server, or Internet Authentication Server directly into the DMZ. Instead, a gateway server typically acts as a secure proxy between the DMZ and the secure on premise network. This gateway server might for example relay authentication credentials to an authentication server.

The backend components can vary widely depending on the vendor whose products are being used and on whether the private cloud is based on the Terminal Services or on virtual desktops.

In the case of a VDI deployment the core components are a connection broker and the hypervisor. The connection broker’s job is to match end user session requests to virtual desktops. If a user has not previously established a session then the connection broker would typically attach the user to an unused (available) virtual desktop. If the user was previously working within a virtual desktop and became disconnected (or if the user has a dedicated personal virtual desktop) then the connection broker will reconnect the user with the appropriate virtual desktop.

The hypervisor is responsible for actually running the virtual desktops. Virtual desktops exist as a series of virtual machines. Typically a VDI deployment will make use of several host servers, all of which run virtual desktops. Doing so provides a degree of fault tolerance. It also helps to improve scalability since the end user workload is distributed across several host servers.

Another essential component to a VDI deployment is a management console. VDI deployments tend to have a lot of “moving parts”. The management console allows the administrator to manage things such as resource pools and virtual machine templates through a single interface.

While these are some of the major components that tend to be used in a private cloud, it is important to remember that the actual required components vary depending on infrastructure type and on the vendor whose products are being used.

--Brien Posey, Guest writer--

Private Cloud Environment with Parallels RAS

Parallels Remote Application Server reinforces an administrators ability to easily set up key virtualization components to a private cloud environment. Parallels RAS is a platform-independent virtual desktop, application delivery, and integrated Windows client management solution to any modern operating system, as well as to mobile devices including smartphones and tablets. With Parallels load balancing, end users are able to achieve a higher level of satisfaction and computing resources are fully optimized. Operating in a High Availability configuration, Parallels RAS intelligently directs traffic among healthy gateways in the DMZ to remove single-points-of-failure, optimize utilization, reinforce security and guarantee always-available applications.

The Parallels RAS Portal facilitates users to easily connect to Parallels Published resources through a Web Interface. Authenticated users gain access to desktops and applications published through Parallels RAS, be it from a desktop PC, tablet or mobile device. Moreover, remote desktops can be delivered using either a Virtualized Desktop Infrastructure (VDI) or Microsoft Remote Desktop Services (RDS) in a secure and easy-to-manage way. This flexibility allows administrators to mix and match popular hypervisors with popular mobile devices and workstations. All this from a central, easy to use management console.

References:

What is Private Cloud : Interoute

Private Cloud: Tech Target

Cloud Computing: Wikipedia



Leave a Reply