The post How-to: Providing secure access to Microsoft Azure with Parallels Browser Isolation appeared first on Server and Cloud Blog.
]]>Parallels Browser Isolation (PBI) is a comprehensive, cloud-native solution that offers highly secure access to web applications and SaaS via a preferred web browser. It is a remote browser isolation solution that offers Zero Trust protection from cybersecurity threats and aligns with industry security standards for safety, protection, and compliance.
Parallels Browser Isolation is a fully hosted remote browser isolation service, with a control plane and containerized browser instances. It’s scalable, flexible, and agentless, offering a highly adaptable and secure solution for all users within an organization.
Learn more about Parallels Browser Isolation!
Like many SaaS applications, users have access to Microsoft Azure from any device and any location by default.
Conditional access in Microsoft Entra Identity (Azure AD) enables you to impose restrictions on managed devices or specific network ranges. However, it’s important to understand that these restrictions are applicable only to managed devices.
What if you want to enforce restrictions without the use of VPN agents? Or suppose you aim to apply access controls to bring-your-own-device (BYOD) policies or non-windows-based devices?
Adding to these challenges, it’s crucial to note that conditional access focuses solely on securing entry points. It does not extend to controlling actions within Microsoft Azure (or any other SaaS application) once access is granted.
What if your security needs include stopping users from downloading data while permitting uploads? Or suppose you need to disable copy/paste functions, prevent screenshot capture, and block printing capabilities? These requirements align with a Zero Trust security model, yet such specific restrictions cannot be achieved through traditional conditional access or role-based access controls alone.
Parallels Browser Isolation enables you to route all Microsoft Azure access through a remote browser. This setup allows for geo-blocking, restricting access exclusively to locations associated with PBI IP addresses.
Following this configuration, only users who adhere to the PBI policies and belong to the designated access groups will be granted the ability to connect to Azure. Furthermore, the policy engine empowers you to specify permissible actions within Azure, such as copy/paste, upload, download, print, and others, offering a tailored and secure user experience.
For the first step, you must set up Microsoft Azure to exclusively permit access from PBI IP addresses. You can do this by setting up conditional access within Microsoft Entra ID (formerly known as Azure AD). It’s important to highlight that activating this conditional access feature requires a Microsoft Entra Identity P1 license. The process starts with establishing a Named Location that encompasses the IP addresses associated with Parallels Browser Isolation.
As an admin, go to “Microsoft Entra ID” —> “Security,” —> “Named Locations” Click on “+ IP ranges location” and give this location a unique name. In my case, I called this location “Parallels Browser Isolation”. Add all IP addresses used by Parallels Browser Isolation. The list can be found online in this KB article: https://kb.parallels.com/en/130095.
When adding the different IP addresses, add a /32 to the end to identify that these are single IPs and not ranges.
Once this is done, go to “Microsoft Entra ID” —> “Security” —>“Conditional Access”
Click on “+ Create new policy” and give it a unique name. In my case, I called it “PBI Only Policy”.
In configuring the policy, the initial step involves selecting the ‘Users’ to whom the policy will apply. It’s advisable to begin with a small user group for testing purposes before expanding the policy to include a broader audience.
Important: Make sure you exclude at least a few users from this policy, as you might need to get back into your Microsoft Azure if there are configuration or other issues with your conditional access configuration. If you include everyone and you have an issue, you can’t log in to Microsoft Azure anymore and, therefore can’t make any changes to the conditional access settings in the “Microsoft Entra ID”.
Next, we need to select the “Target Resources” and select “Include”.
If you want to protect your Azure portal only, then choose the “Select apps” option and “Select” only “Microsoft Admin Portals”. This application covers access to Microsoft Azure and some other management portals.
Important: If you choose the “All cloud apps” option, take into account that you might have configured your Parallels Browser Isolation (PBI) solution to be federated with “Microsoft Entra ID,” and therefore, you need to make sure you exclude the application that was created in “Microsoft Entra ID” for PBI from this policy. If not, you won’t be able to log in on PBI.
On the “Conditions” settings, we now have to enable the “Locations” filter. We want to have this policy enabled for all locations except for the “Parallels Browser Isolation” location created in the first step of this procedure.
To do this, under “Include”, select “Any Network,” and under “Exclude,” select “Select Locations” and select the “Named Location” you created earlier, in my case, “Parallels Browser Isolation” location.
The other conditions like “User risk”, “Sign-in risk”, “Device platforms”, “Client apps,” and “Filter for devices” can remain in the default configuration and don’t need to be modified.
The final steps are to set the “Access Controls” to “Block access”, set “Enable policy” to “On,” and save it.
Now that the conditional access is configured, your next step is to make sure the users can access Microsoft Azure via Parallels Browser Isolation (PBI).
To do this, log in and go to the PBI admin portal. Click on “Applications” —> “Add Application” —> “Secure Web Application”.
Start by setting the “Name“and the “Icon”. Set “https://portal.azure.com” as a start URL.
Under “Domains,” you have now to specify all URLs that are used by Azure.
For some SaaS applications, this is a single domain, but for Microsoft Azure, the list is pretty long (this is the full list of all domain names used by Microsoft Azure).
You can add the individual subdomains or only the main domains. In the example below we simplified the list of domains to include only the main domains, but not the individual subdomains. Also, we added all possible domains, not just the ones linked to the Microsoft Azure login but all the individual services.
The following domains have been added:
aadrm.com
azconfig.io azure.com azure.net azureedge.net azuresynapse.net loganalytics.io |
login.live.com microsoft.com
microsoftonline-p.com microsoftonline.com msauth.net msauthimages.net msftauth.net |
msftauthimages.net
office.com status.microsoft trafficmanager.net windows.net |
Under the “Access for secure web applications,” select the users or groups in PBI that must have access to Microsoft Azure. Optionally, select an extra policy you want to apply to this application. If the policy doesn’t exist yet, you must first save the application, create a new policy, and then edit the app and assign the newly created policy.
Before creating the policy, don’t forget to save the configuration. You do this by clicking on the bottom of the screen on “Add”.
Once that is done you will see the app in the list of published apps.
In this example, I want extra security on top of Microsoft Azure and, therefore, will create an extra policy to block “copy/paste”, “download”, and “printing” and have a watermark on the screen to make it more difficult to take screenshots.
To create a new policy in the right menu bar, click on “Policies” —>“Add”
Again, we start with setting a “Name”. My policy will be called “Microsoft Apps Policy”, and the idea is that I can apply this same policy to other published Microsoft applications I may want to publish in PBI later.
I want to apply the policy to all users, so I will set the filter for “Users and Groups” to disabled.
Same for the “Active Hours”, I keep it set to disabled.
For the “Location,” I can implement the geo-restriction. As we have restricted access to Azure to only PBIIP addresses with conditional access, we can’t set country-based geo-restrictions at that level.
In my example, I have geo-restricted Microsoft Azure access to “Belgium”, “France”, “Germany”, “Italy”, “Netherlands”, “Portugal” and “Spain”.
On the “Security controls/Policy Features,” I enabled the “Disable printing”, “Disabled downloads,” and “Disable Clipboard” features.
Under “Security controls/End-user experience,” I enabled the following features:
The “Restrict URLs” options don’t need to change here — they can stay on the default values.
Finish creating the policy by clicking on “Save”. Now that the policy has been created, go back to the “Azure Portal” application and add the “Microsoft Apps Policy” to the application.
Now that we have published the “Azure Portal” application on PBI and configured the conditional access on Microsoft Entra ID, we can test if the setup works: First, we try to open it directly from the web browser.
This should not work as the conditional access only allows connections from the Parallels Brower Isolation IP addresses.
If we do the same thing but via Parallels Browser Isolation, it works. Also, note the watermark and the blue bar around the screen.
Now you have set up secure access to Microsoft Azure via Parallels Browser Isolation!
Learn more and sign up for a free trial of Parallels Browser Isolation.
The post How-to: Providing secure access to Microsoft Azure with Parallels Browser Isolation appeared first on Server and Cloud Blog.
]]>The post Announcing Parallels Browser Isolation: Your gateway to safer web access with enhanced policy control appeared first on Server and Cloud Blog.
]]>Traditional security methods can’t fully protect you from advanced attacks targeting web browsing.
Today, Parallels introduces its latest, unique cloud-native and secure web access service, Parallels Browser Isolation. This solution allows organizations to confidently and securely access SaaS apps and more, better enabling global collaboration and remote working.
It’s your gateway to safer web access with enhanced policy control.
Bid goodbye to the hassles of securing web access, managing browser vulnerabilities, and worrying about online threats.
Welcome to a new era of effortless, robust, and efficient browser isolation that ensures a safe, scalable, and seamless browsing experience for your entire organization. PBI provides secure web access for remote workers, contractors, and compliance-focused industries.
Ready to try Parallels Browser Isolation now? Sign up for your free trial!
Parallels Browser Isolation provides a secure way to access web applications, including Software as a Service (SaaS) and other cloud-based applications, right from your favorite web browser on your laptop or desktop.
It provides top-notch security against web-based threats by running web applications in a separate, secure browser environment in the cloud. This creates an “air gap” between the user’s web browsing and your company’s network.
Parallels Browser Isolation streamlines onboarding and management with an intuitive web-based admin portal with granular policy control and real-time plus historical insights.
Parallels Browser Isolation Isolates web browsing to protect users and the organization from web-based attacks, ensuring secure access across all locations and devices.
Ensures the safety of users and organizational assets by securely rendering websites in a remote browser container, effectively preventing any malicious content from reaching the user’s device.
Parallels Browser Isolation offers a streamlined and detailed policy engine for easy management.
It enables content filtering by geography or category and customization of access policies for clipboard, printing, and file transfers, alongside the ability to allow trusted domains and block specific URLs.
This granular approach significantly reduces risks, ensuring secure web browsing and SaaS application use with enhanced control, aligning operational flexibility with stringent security needs efficiently.
Parallels Browser Isolation provides comprehensive, real-time insights into the actions and activities of both users and administrators, alongside detailed historical data for in-depth analysis. This dual focus on real-time and historical insights offers a nuanced understanding of user behavior and administrative actions, enabling more informed decision-making and enhanced security protocols.
With Parallels Browser Isolation, organizations can monitor and review user and admin activities with unprecedented clarity and detail, facilitating a deeper understanding of their digital environment’s dynamics.
This powerful feature ensures that businesses have the necessary tools to analyze trends, identify potential security threats, and make data-driven decisions to bolster their cybersecurity posture.
Parallels Browser Isolation offers a predictable and transparent pricing structure, ensuring that businesses have clear expectations of costs.
With predictable pricing, Parallels Browser Isolation presents businesses with straightforward cost forecasts, eliminating financial surprises and allowing for effective budget planning.
PBI is expandable throughout the Parallels ecosystem, offering a full workspace solution for accessing apps and desktops from on-premises or cloud. Plus, it is compatible with external identity providers (IdPs), including Microsoft Entra ID, Okta, and Ping.
Adding Parallels Browser Isolation is beneficial for existing Parallels customers using Parallels Secure Workspace, Parallels RAS, and Parallels DaaS who want to enhance the security of their SaaS apps and enable secure web browsing as well as organizations in need of a stand-alone remote browser isolation solution.
It’s designed for organizations seeking a comprehensive secure workspace solution that want to enhance the security of their SaaS apps and enable secure web browsing.
Parallels Browser Isolation supports legacy apps, desktops, SaaS, and web applications, catering to a wide range of business needs and types of IT environments.
Setting up Parallels Browser Isolation is straightforward; in just four easy steps, administrators can launch a secure browsing session, ensuring users can safely access SaaS apps.
Fast setup — with no IT overhead, get a secure, efficient web browsing experience set up in less than 10 minutes, with no learning curve. You can launch a secure session for users in under five minutes!
Register an account and access Parallels Browser Isolation.
Configure security policies and publish your applications.
Invite users to access published applications.
Users launch a secure session for access to applications.
This is Parallels Browser Isolation admin portal, where admins can configure policies. Adding SaaS apps and secure browsers is as simple as a few clicks. The intuitive dashboard is designed for clarity and efficiency.
Within this admin portal, admins can manage users with ease, gaining valuable insights through live reports and audits.
The dashboard supplies you with an instant snapshot, including active users, applications, and policies, along with a 30-day overview of user sessions, browser activities, and policy compliance.
This is how the Parallels Browser Isolation portal appears to an end user, and below that, you can see how a secure browsing session is experienced from the end user’s perspective.
“Browser isolation is getting the attention and investment that is due in the market. Strategically, Zero Trust requires that we don’t trust the internet, and we don’t trust our users not to interact with malicious content. Using Parallels Browser Isolation aligns with that requirement and can help a business enable this critical strategy. And it does so without negatively impacting the user experience”
-Chase Cunningham, Dr. Zero Trust and cybersecurity expert
Discover secure web access with Parallels Browser Isolation.
Sign up now for a free trial and join our webinar to learn more about how PBI can safeguard your digital interactions. Don’t miss out on this opportunity to enhance your organization’s security and efficiency.
Parallels Browser Isolation is secure browsing, simplified — it’s your gateway to safer web access with enhanced policy control.
The post Announcing Parallels Browser Isolation: Your gateway to safer web access with enhanced policy control appeared first on Server and Cloud Blog.
]]>The post Marching ahead with the Parallels platform appeared first on Server and Cloud Blog.
]]>In this post, I’d like to emphasize the importance of Parallels Browser Isolation and how it seamlessly integrates into our strategic Parallels platform, empowering our customers and partners to navigate the changing end-user computing and security landscape with confidence.
Cybersecurity threats are multiplying at an alarming pace, fueled by the rise of remote work, BYOD, and the widespread adoption of SaaS applications. A recent survey paints a stark picture — a staggering 41% of organizations from different sectors experienced security breaches in the past year, highlighting the severity and prevalence of these threats.
With a growing need to protect their organization’s data from inadvertent compromises caused by cybersecurity incidents, administrators are looking for simple solutions to secure their data and applications.
Parallels has unified remote access as a single vendor capable of providing access to legacy applications – with Parallels RAS and Parallels Secure Workspace through VDI, as well as Parallels DaaS in the cloud. And now, with the addition of Parallels Browser Isolation securing remote access to SaaS applications. The need for secure access to apps and data has never been more pressing for organizations of all sizes.
By consolidating access under a single vendor, Parallels provides partners and customers with a one-stop shop for all their security access needs. There’s no need to juggle expensive secure access alternatives—Parallels Browser Isolation provides a way for partners and customers to use Parallels to access important tools that were previously only offered by CASB or DLP solutions.
With the launch of Parallels Browser Isolation, the Parallels team is not just enhancing security, but evolving the way customers and partners solve their application delivery and access challenges.
By implementing a hub and spoke model, we’ve centralized control through a robust control plane (the hub) that is architected to connect all Parallels products between endpoint, server, and cloud (the spokes). Parallels DaaS and Parallels Browser Isolation are the first two services in this hub and spoke model.
This milestone represents a significant step towards achieving our vision of a centralized hub for all Parallels products, streamlining operations for administrators, and ensuring a cohesive user experience.
Now, customers and partners can confidently rely on Parallels to securely access a wide range of applications, including legacy, cloud, desktop, and SaaS, all within our holistic platform of secure workspace solutions.
One of the first principles for Parallels has been to keep it simple for customers (administrators and end-users).
Moreover, Parallels offers a unified administrator experience that makes it easy for admins to deploy and manage desktops and applications. With our cloud services, we are building a centralized control plane that allows the management of various services via a common management interface.
The Parallels Browser Isolation release plays a vital role in realizing our central hub and spoke model. By addressing critical security perimeters, Parallels Browser Isolation becomes the cornerstone of building a seamless and comprehensive experience that encompasses remote access to all applications used by an organization.
We have a pipeline brimming with exciting innovations, all ensuring that Parallels remains at the forefront of technological advancement.
We assure our users that Parallels is and will be committed to innovation and user-centric solutions in the intersection of cybersecurity and end-user-computing (EUC) areas.
Access your Parallels Browser Isolation trial now.
The post Marching ahead with the Parallels platform appeared first on Server and Cloud Blog.
]]>The post Empowering Businesses: The role of MSPs in delivering Desktop as a Service (DaaS) appeared first on Server and Cloud Blog.
]]>As organizations strive to maintain operational continuity, optimize their resources, and secure sensitive data, Desktop as a Service (DaaS) has emerged as a pivotal solution for MSPs.
The DaaS market is expected to be worth 18.7 Billion USD by 2032 at a 21% CAGR, meaning MSPs can play a crucial role in providing organizations with a comprehensive and tailored approach that surpasses the benefits of organizations implementing solutions independently.
DaaS solutions provide an ideal transition for MSPs already overseeing client endpoints that are hosted on-premises or in private data center environments, facilitating a seamless shift to the cloud. The transition to DaaS presents a strategic move and offers a range of advantages.
Among these advantages is the advanced security functionality that is inherent in DaaS environments.
These solutions often come equipped with robust security measures, including encryption, multi-factor authentication (MFA), and centralized management tools.
MSPs can leverage these features to deliver their clients’ data and applications, while ensuring a higher level of protection in the cloud than may be feasible in on-premises environments.
DaaS emerges as an ideal solution for MSPs seeking to deliver VDI for their customers.
Offering a straightforward approach that mitigates the need for specialized talent well-versed in VDI or EUC technology, the ease of use and simplicity of management of DaaS through a singular console allows MSPs to establish proof of concept (PoC) environments swiftly, providing customers with access to operational desktop solutions in almost no time.
The meteoric rise of the remote work culture necessitates technologies that enable seamless connectivity regardless of physical location. DaaS solutions empower MSPs to provide their customers access to virtual desktops and applications from anywhere with an internet connection.
One of the fundamental advantages of DaaS is its inherent scalability. Organizations can dynamically adjust their desktop infrastructure in response to fluctuating workloads and evolving needs. MSPs can help them scale, ensuring their customers can seamlessly expand or streamline their resources without operational disruptions, optimizing efficiency and cost-effectiveness.
The pervasive adoption of cloud services has substantially bolstered the DaaS market. Cloud infrastructure has matured into a reliable, secure, and cost-effective option, making DaaS an appealing choice for businesses seeking to streamline their desktop environments. MSPs can leverage their expertise to navigate the intricate landscape of cloud services, ensuring optimal performance, scalability, and security within the DaaS framework.
Amid the transition to DaaS, data security emerges as a paramount concern. The storage of sensitive data in the cloud necessitates robust security measures to fortify against potential data breaches and unauthorized access. MSPs specializing in DaaS offer comprehensive security protocols, including encryption, multi-factor authentication, and proactive threat monitoring, thereby assuaging organizations’ security apprehensions.
While some organizations might contemplate implementing DaaS solutions independently, the expertise and comprehensive support provided by MSPs present a compelling case for collaboration.
MSPs offer specialized knowledge, round-the-clock support, proactive monitoring, and strategic guidance, ensuring that businesses leverage DaaS to its fullest potential while mitigating risks and maximizing benefits.
By taking charge of the complex billing and licensing processes, MSPs can streamline the financial aspects for their clients. They can provide simplified, consolidated invoices and optimize their clients’ budgets through strategic cost management techniques.
As organizations navigate the complexities of remote work integration, cloud adoption, data security, scalability, and technological advancements, MSPs emerge as indispensable partners. Their specialized expertise, coupled with a holistic approach to managing and optimizing DaaS solutions, positions MSPs as facilitators of transformative and resilient business environments in an increasingly digital landscape.
Parallels DaaS stands out as a cutting-edge solution tailored for MSPs aiming to elevate their service offerings. The platform revolutionizes the delivery of desktop services to clients by optimizing manageability, scalability, and security.
Its core strength lies in its cloud-native architecture, which simplifies deployment and maintenance while ensuring exceptional user experiences across devices via a modern HTML5-based web-browser interface.
Parallels DaaS excels in several key areas:
Built in the cloud, Parallels DaaS capitalizes on agility, cost-effectiveness, and resilience. Its architecture strategically places access points closer to both data and users, enhancing MSP performance and reducing latency.
The ability to swiftly scale desktop infrastructure according to fluctuating demands allows MSPs to optimize costs without compromising on performance or accessibility.
Leveraging a web-based management portal, Parallels DaaS empowers MSPs to provide their customers with access to applications and desktops. The management portal streamlines administrative tasks, making it simpler to configure and manage various aspects of the DaaS environment.
Parallels DaaS sets a high bar for security by isolating the control and data layers. The gateway service operates within the client’s environment, ensuring that access control is managed by Parallels while keeping the sensitive data securely within the client’s domain. This innovative approach enhances data security and compliance measures.
MSPs can elevate their DaaS offering by replacing on-premises, private data centers or outdated DaaS environments. The platform’s flexibility enables MSPs to optimize costs providing a more predictable cost structure, empowering MSPs to manage expenses effectively and enhance profitability.
Parallels DaaS reduces the barrier to entry for MSPs transitioning into this space. This ease of deployment and management without the requirement of highly skilled specialized technical staff allows MSPs to focus more on service delivery and client satisfaction rather than grappling with complex technical requirements.
Parallels DaaS optimizes cloud spending by efficiently managing resources, leading to lower overall costs for MSPs and ultimately increasing profits through a more streamlined and cost-effective service delivery.
By leveraging Parallels DaaS, MSPs can gain a competitive edge. The solution’s unique architecture not only streamlines operations but also fortifies security measures. It ensures a seamless and secure desktop experience for end users while simplifying management tasks for service providers.
Ready to try it? Sign up for your free trial and learn more about Parallels DaaS!
The post Empowering Businesses: The role of MSPs in delivering Desktop as a Service (DaaS) appeared first on Server and Cloud Blog.
]]>The post Unpacking Desktop as a Service (DaaS): A powerful tool for modern workforces appeared first on Server and Cloud Blog.
]]>Leading providers like Parallels offer convenient access to virtual desktops, eliminating the need for upfront investments in hardware and software.
DaaS leverages private or public cloud services, enabling multiple users to access virtual desktops over the Internet. The cloud provider takes care of everything, from infrastructure management to security, ensuring seamless and reliable access to virtual desktops. With an internet connection, users can access their desktops from any device, anywhere, using an endpoint application or web browser.
DaaS offers numerous benefits for organizations, including:
While DaaS offers several advantages, it is essential to compare it with traditional VDI to understand its suitability for your organization:
In summary, the choice between DaaS and VDI depends on your organization’s specific needs and resources. DaaS is ideal for organizations that:
VDI, on the other hand, is better suited for organizations that:
Many companies are increasingly transitioning to the DaaS model due to its benefits. Some of the organizations that can benefit from a shift to DaaS offerings include:
Before choosing an appropriate DaaS provider, you must first determine if DaaS or Desktop as a Service is the right approach for your organizational needs.
For example, you could have a scenario where employees are used to accessing resources through local PCs in an on-premises IT infrastructure. In this type of environment, it makes business sense to determine if a transition to cloud-based VDI can save costs and free up more resources.
Start by weighing the merits and demerits of VDI versus DaaS. For instance, do you have the necessary virtualization expertise, time, and other tools to manage on-premises IT infrastructure in-house, or would transitioning to DaaS make more business sense?
DaaS represents a significant advancement in desktop solutions, enabling organizations to embrace a more agile and efficient work environment. Its inherent benefits, like increased productivity, cost savings, and enhanced security, make DaaS a compelling choice for businesses of all sizes.
As DaaS offerings continue to evolve, these solutions are poised to become an essential tool for the modern workforce. As businesses seek to embrace modern work practices, understanding the benefits and challenges of DaaS is crucial.
By making informed decisions about their desktop infrastructure, organizations can unlock new levels of efficiency, cost-effectiveness, and security to thrive in the competitive landscape.
Parallels DaaS stands as a testament to the power of desktop as a service, offering organizations a comprehensive and secure solution tailored to their unique needs.
Our platform empowers businesses to enhance employee productivity, optimize costs, and achieve greater flexibility in a rapidly changing world.
Check out Parallels DaaS today.
The post Unpacking Desktop as a Service (DaaS): A powerful tool for modern workforces appeared first on Server and Cloud Blog.
]]>The post Parallels celebrates the VIPP Class of 2024! appeared first on Server and Cloud Blog.
]]>Our VIPP Program honors outstanding IT community professionals, technical wizards, and contributors in the end-user computing (EUC) realm. Join me in welcoming this year’s members!
Their invaluable insights and feedback play a pivotal role in shaping the future of the Parallels® Portfolio, including Parallels RAS (Remote Application Server), Parallels Secure Workspace, Parallels DaaS, Parallels Browser Isolation (PBI) and Parallels Desktop, as well as community tools for remote work and cloud computing.
The VIPP Program recognizes the exceptional contributions and dedication of each member in acquiring and sharing their expert knowledge across diverse EUC technologies.
Our VIPP members wield substantial influence, guiding product strategy through their wealth of experience and deep understanding of industry trends and market needs.
Whether they’re publishing insightful blog posts and articles, organizing virtual and in-person community gatherings, sharing technical resources and documentation, presenting at IT conferences and user groups, or actively engaging in online discussions, their unwavering support for Parallels and the EUC community is truly invaluable.
These remarkable individuals consistently demonstrate their real-world expertise in EUC, and we’re incredibly proud to honor and reward their substantial contributions to the community.
Please join us in congratulating our esteemed 2024 VIPP awardees and current members:
Interested in learning about the Parallels VIPP Program? Discover how to become a member or email VIPP@parallels.com to learn more.
The post Parallels celebrates the VIPP Class of 2024! appeared first on Server and Cloud Blog.
]]>The post Potential disruptions for MSPs in the wake of VMware’s acquisition by Broadcom appeared first on Server and Cloud Blog.
]]>This encompasses vendor partnerships and continuity in delivering managed services to customers.
As the bridge connecting organizations to solutions that deliver reliable technical services, the success of the MSP model hinges on the dependability and reliability of their chosen vendors and platforms.
In other words, building a profitable managed services portfolio depends on forging strong partnerships with vendors like Parallels RAS, who can provide long-term stability, support, and innovation.
These partnerships ensure the delivery of seamless services and contribute to the financial stability crucial for the MSP model to operate successfully.
Equally vital is the cultivation of trust with vendor partnerships — a trust rooted in their partner programs’ reliability.
The recent disruptions sparked by Broadcom’s acquisition of VMware have left some MSPs facing a significant hurdle. It’s been reported that their ability to transact as Cloud Services Providers under the VMware Partner Connect Program ends in April.
This shift requires MSPs delivering VMware solutions to sign up for a new Partner Program. This adds uncertainty and potential changes to their existing partner terms and agreements.
This shift could cause disruption of services for MSPs or, even worse, their customers opting to switch providers, resulting in the loss of long-term customers.
Are you an MSP looking to shift from VMWare? Sign up for our Parallels RAS Partner Program!
MSPs are entrusted with delivering seamless services to their customers.
They rely heavily on vendors to provide stable solutions across infrastructure, platforms, and software to ensure business continuity for everyone involved.
Broadcom’s acquisition of VMware introduces an element of unpredictability, emphasizing the need for MSPs to swiftly adapt and maintain the reliability their clients depend on.
For MSPs, service disruptions (regardless of the cause) can be devastating.
This is true for their operations but, more importantly, for their customers who rely on uninterrupted access to critical applications and resources.
Changes to the business ecosystem may pose challenges, threatening the smooth delivery of services that MSPs build their reputations upon.
The business model of MSPs is intricately tied to a steady and recurring income stream, often generated through monthly billing and long-term contracts.
The turbulence caused by changes to vendor partnerships raises concerns about potential disruptions impacting financial stability.
Amidst this turbulence, MSPs must have a strategic mindset. Some key considerations include:
MSPs must swiftly adapt to the new changes in Partner Programs, ensuring a seamless transition for both their internal operations and customer services.
Clear and transparent communication with customers is essential. MSPs need to inform customers about potential changes in services and reassure them of their commitment to continued excellence.
Exploring additional partnerships and service offerings can provide MSPs with a diversified portfolio, mitigating risks associated with a single vendor reliance.
As MSPs try to adapt to the shifts brought on by the Broadcom acquisition of VMware, a silver lining emerges – the seamless and comprehensive solution provided by Parallels RAS.
In times of uncertainty, Parallels RAS stands out as a stable option, offering MSPs a robust platform to deliver managed desktop and application services without interruption.
Parallels RAS simplifies the complex landscape for MSPs by providing a unified solution with a single license model.
This not only streamlines the licensing process but also ensures that MSPs clearly understand their operational costs, offering financial stability and control.
One of the standout features of Parallels RAS is its ability to manage and administer customer environments across on-premises, cloud environments, and/or hybrid scenarios.
MSPs using Parallels RAS are empowered with the flexibility to provide services from their platform(s) of choice, adapting to the diverse needs of their customers without compromising efficiency or security.
Parallels RAS excels in providing a user-friendly experience for both MSPs and their customers. Its seamless integration capabilities enable MSPs to effortlessly incorporate Parallels RAS into their existing infrastructure, reducing the technical learning curve and minimizing disruptions to ongoing operations.
In an era where multi-cloud strategies are growing in popularity, Parallels RAS can be delivered across a mix of public cloud vendors like AWS, Azure, and Google Cloud.
You can select the best cloud platform to deliver your solutions of choice and avoid vendor lock-ins.
Parallels simplifies management and administrative aspects for MSPs.
With centralized management and monitoring tools, MSPs have granular control over their clients’ environments, facilitating efficient administration, troubleshooting, and performance optimization.
The Parallels MSP Partner program provides free technical training and certifications to ensure your technical staff is equipped with the latest knowledge and expertise.
The free 24/7 technical support also alleviates the pressure on internal staff, providing a safety net for troubleshooting and problem resolution.
As MSPs navigate uncertainty, adopting Parallels RAS offers a unified, flexible, and comprehensive solution.
Parallels RAS equips MSPs with the tools and technical training they need to confidently approach the future, ensuring the continuity of services for their clients while maintaining the financial stability crucial to building an MSP business model.
Sign up for the Parallels Partner program and learn how Parallels RAS can help your MSP business.
The post Potential disruptions for MSPs in the wake of VMware’s acquisition by Broadcom appeared first on Server and Cloud Blog.
]]>The post Unleashing the power of Parallels RAS: Elevating your Microsoft RDS deployments appeared first on Server and Cloud Blog.
]]>However, as technology evolves, so do the demands of modern workers and IT managers.
In this blog post, I’ll explore the pain points of traditional Microsoft RDS deployments and unveil the top-notch benefits that Parallels RAS brings to the table, revolutionizing the landscape of remote application and virtual desktop delivery.
Since its initial release with Windows Server 2008, Microsoft RDS has been a cornerstone of remote computing, bringing together various server roles like Remote Desktop Session Host, Virtualization Host, Licensing, Connection Broker, and Web Access.
While the original RDS solution has facilitated remote collaboration, it may no longer meet the evolving needs of IT managers and the workforce.
Hybrid and migration | Complex configuration | Security
concerns |
Lack of
innovation |
Limited user experience |
Limited support for remote working practices and phase-out migration plans. | Setting up and configuring RDS can be complex, especially for unfamiliar users. | RDS is complex with aging technologies, requiring extensive configuration for cybersecurity protection. | Managing RDS deployments can be cumbersome due to the manual and unintuitive process involved. | Insufficient features to support or boost the productivity of the workforce. |
Organizations are increasingly embracing adaptable frameworks, enabling employees to operate remotely and in physical offices. This shift towards hybrid and remote work signifies a fundamental change in the traditional workplace and compounds the challenges for RDS business users.
According to the 2023 Parallels hybrid cloud survey, a substantial number of respondents—77%—have embraced a hybrid working model with teams seamlessly transitioning between on-site and remote work.
64% of survey participants have already adopted a hybrid cloud strategy, effectively utilizing both on-premises and cloud infrastructures.
The flexibility it provides is the primary motivation for 49% of respondents to adopt hybrid virtualization technology.
This transformative evolution is propelled by advancements in communication tools, a heightened awareness of the importance of a healthy work-life balance, and the resilience demonstrated in the face of global disruptions. Collectively, these factors prompt a reassessment of conventional work structures.
For RDS environments, the inability to cater to evolving business demands and shifting employee work habits is exacerbated by limited hybrid capabilities.
However, Parallels RAS can help overcome this challenge.
With its support for hybrid deployments and a diverse set of features facilitating work-from-anywhere practices, businesses with RDS environments can move forward and align with the dynamic landscape of modern working habits and practices.
Parallels has been pioneering virtualization solutions for businesses and users around the world since 1999, enabling access to critical data and applications for millions of customers.
Parallels has a range of different solutions that can address the different business and IT needs and complexities of RDS customers.
Parallels RAS is a versatile virtual application and desktop delivery solution, enabling secure remote work for organizations of all sizes.
It provides an agile, cloud-ready foundation with end-to-end security and a centralized management console.
Support on-premises, hybrid, or public cloud deployments and seamless integration with platforms like Azure Virtual Desktop and Amazon EC2.
This solution offers flexibility, scalability, and IT agility to swiftly respond to evolving business requirements under a comprehensive, single licensing model that includes 24/7 technical support plus access to free training sessions and other learning materials.
It is a delivery solution.
It’s not the hypervisor, but we support many different hypervisors, including VMware ESX, Microsoft Hyper-V, Scale, Nutanix, and other popular options.
Parallels RAS is not the content host or the “back end,” though we offer the flexibility to connect to various infrastructure types.
Parallels RAS is the delivery management and customer experience side of a virtual desktop infrastructure. It sits on the hypervisor between the end user and the content, servers, and the back-end VDI solution.
Parallels RAS can not only deliver on the same core use cases that lead many customers to opt for an RDS environment in the first place but also mitigate the typical pain points many customers are currently dealing with.
RDS offers limited support for remote working practices and phase-out migration plans like moving to a cloud environment.
However, Parallels RAS supports on-premises, cloud and multi-cloud, hybrid, and native support for cloud technologies like Azure Virtual Desktop.
All infrastructure is deployed and managed directly within the administration portal, offering a much-improved administration experience working with multiple environments.
Unlike RDS, which introduces complexity to the process of setting up and configuring an RDS environment, Parallels RAS offers a streamlined and user-friendly experience.
Thanks to its intuitive management console, wizard-based guides, and extensive automation features, the entire process of setting up, configuring, and managing your environment becomes exceptionally straightforward.
This simplicity not only saves valuable IT administration hours but also eliminates the need for costly training sessions.
As an aging technology, RDS demands intricate configuration to meet modern cybersecurity standards, yet there are instances where this alone may not suffice.
In contrast, Parallels RAS excels in enhancing security throughout crucial phases of application and desktop delivery.
For instance, it employs cutting-edge TLS 1.3 security protocols that ensure robust protection. Moreover, Parallels RAS extends security measures to end users through multi-factor Authentication (MFA).
The inclusion of thorough auditing, user monitoring, and forensics adds a layer of detailed security analytics that sets Parallels RAS apart in the cybersecurity realm.
Ineffectual solutions that fail to align with your evolving needs can significantly hinder productivity, a common challenge faced by numerous RDS users.
Parallels RAS addresses this issue by prioritizing innovation in areas of security, flexibility, user experience, and cost optimization. Noteworthy capabilities include autoscaling to empower IT admins to efficiently manage costs, especially in cloud-based environments like Azure Virtual Desktop.
Furthermore, features like FSLogix profile and container management and image templating effectively enhance user profile and image management with Parallels RAS.
Limiting features designed to support workforce productivity can have a significant impact on the user experience—something that current RDS users are likely familiar with.
Fortunately, Parallels RAS supports a range of features to help increase productivity and improve the experience of end user professionals. Features like universal printing, AI-driven session prelaunch, and accelerated file redirection are all aimed at boosting productivity and efficiency within a work-from-anywhere strategy.
Parallels RAS supports a broad spectrum of endpoint choices, with client support for Windows OS, MacOS, and even a dedicated Parallels client for web. The Parallels client enhances user experience with modern and intuitive UI design, featuring customizable options including light/dark settings to allow users to adjust their environment to suit their needs and ultimately work more productively.
Parallels solutions are crafted to address the diverse challenges RDS customers encounter, catering to their specific circumstances and requirements.
Remote working | Application publishing | Dynamic scaling | Meet government compliancy | Graphical workloads |
Support modern organizations that work and collaborate remotely — at home, in the office, or on the go. | Enabling the delivery of key applications to end-users without the need to install them locally on their devices. | If contractors or seasonal workers are necessary, then Parallels can help dynamically scale resources to support this requirement. | Organizations engaged in government contracts necessitating stringent security compliance, such as FIPS 140-2 measures. | Businesses with design, video editing, or animation teams that require the support of professional graphics apps and content. |
Ready to try Parallels RAS for yourself? Get your full-featured free trial here and start your journey towards an improved RDS environment.
The post Unleashing the power of Parallels RAS: Elevating your Microsoft RDS deployments appeared first on Server and Cloud Blog.
]]>The post Unlocking the future of work: The power of Desktop as a Service (DaaS) appeared first on Server and Cloud Blog.
]]>With the ascent of mobile work environments, employees are breaking free from the constraints of conventional office spaces.
Desktop as a Service (DaaS) is a pivotal technology driving this shift.
According to Cognitive Market Research, the global DaaS market reached a substantial $6,219.5 million in 2022, and projections indicate a robust Compound Annual Growth Rate (CAGR) of 18.50% from 2023 to 2030.
DaaS is a comprehensive virtual desktop solution hosted by third-party providers, such as Parallels DaaS, in a cloud environment.
This innovative service allows businesses to access virtual machines (VMs) running desktop operating systems through a subscription model. The provider manages the intricate Virtual Desktop Infrastructure (VDI), enabling users to connect to their desktops seamlessly from any device with internet connectivity.
Deploying DaaS brings forth several compelling advantages, aligning with the evolving needs of modern businesses.
One notable benefit is the significant reduction in the total cost of ownership. Like many cloud services, DaaS shifts capital expenditures (CAPEX) to operating expenses (OPEX), freeing up valuable funds for growth.
The “pay-as-you-go” pricing model ensures precise spending on utilized workloads, eliminating costs associated with underutilized resources.
DaaS not only reshapes the economic landscape but also addresses critical security concerns.
By shifting security risks away from numerous endpoints to a centralized and managed data center, DaaS enhances the overall security posture.
Eliminating corporate data storage on individual devices minimizes the security burden of lost or stolen devices. Encryption mechanisms and regular backups further fortify the security framework, offering a comprehensive defense against potential threats.
Scalability emerges as another key advantage in the DaaS model.
The “as-needed” addition of endpoints becomes seamless, which is especially beneficial for provisioning resources to temporary project teams or contractors. This agile scalability eliminates the need for substantial hardware procurement, providing a cost-effective solution for organizations facing fluctuating resource requirements.
Simplified management is a hallmark of DaaS and this characteristic is particularly valuable for organizations with large, dispersed workforces.
The challenges of managing and supporting diverse endpoints are addressed efficiently as DaaS operates with a single central image. This approach streamlines updates and patches, minimizing the tedious and costly processes of maintaining disparate endpoint configurations.
DaaS introduces a paradigm shift in employee mobility.
Employees gain unprecedented flexibility and freedom by offering virtual desktops and apps in the cloud.
Anytime, anywhere access to resources ensures enhanced productivity, empowering employees to accomplish tasks and be seamlessly productive from various locations and devices.
Managing IT infrastructures and Virtual Desktop Infrastructure (VDI) traditionally demands a skilled IT administrator team. DaaS, however, minimizes VDI management challenges, allowing organizations to focus on their bottom line.
Businesses can streamline operations with reduced reliance on IT administrators, optimizing efficiency and resource allocation.
Many companies are increasingly transitioning to the DaaS model due to the benefits covered above.
Below are a few examples of the types of companies that can significantly benefit from DaaS offerings:
Startups often need to invest heavily in research and development (R&D) and customer acquisition initiatives. By leveraging DaaS and minimizing the need to purchase servers, software, and other services, startup companies can free up resources for critical business activities. This strategic approach ensures efficient utilization of funds.
Businesses with mobile and remote workforces face many security challenges which DaaS addresses. By ensuring that data never leaves cloud servers, even when employees use their personal or preferred devices, DaaS becomes an excellent option for mitigating security issues in remote working environments.
Companies engaged in project-based work, particularly those with seasonal projects and varying staffing needs, can benefit from the on-demand scalability of DaaS. Quick provisioning or de-provisioning of virtual desktops aligns seamlessly with the dynamic demands of project-based businesses.
In conclusion, Desktop as a Service (DaaS) is a transformative solution applicable to businesses of all sizes and industries.
Its myriad benefits like cost reduction, improved cybersecurity, heightened productivity, and simplified management combine to position DaaS as an invaluable asset for companies navigating the demands of the modern business landscape.
By embracing DaaS, businesses empower employees with the flexibility and mobility necessary to thrive in today’s dynamic and evolving work environments.
Parallels DaaS allows you to unlock your organization’s full potential with a cutting-edge DaaS solution that delivers seamless, secure, and flexible application and desktop experiences from the cloud.
The solution offers users instant access to their virtual applications and desktop environments. As a vendor-assembled and managed solution, it features a cloud-hosted control plane that enables secure remote access to your business applications, desktops, and data from any internet-connected device.
The quick and easy onboarding process allows immediate access to applications and desktops from any device. It removes the complexity surrounding user onboarding and managing users and applications, allowing even small businesses to deliver and use enterprise-grade IT solutions.
Due to its unique architecture of having access points closer to where data and users reside, Parallels DaaS promises the best performance for end-users, with transparent operations for administrators. Ready to fully harness the benefits of cloud computing and embrace a more productive future? Take a look at Parallels DaaS now.
The post Unlocking the future of work: The power of Desktop as a Service (DaaS) appeared first on Server and Cloud Blog.
]]>The post Parallels Secure Workspace vs. Apache Guacamole appeared first on Server and Cloud Blog.
]]>Apache Guacamole and Parallels Secure Workspace offer a built-in RDP to HTML5 gateway, so it is no wonder these two solutions are often compared. In this blog post, I’ll examine what Guacamole is and how it compares to Parallels Secure Workspace.
Want to see how real users rate Parallels Secure Workspace and Apache Guacamole? Check our reviews on TrustRadius.
Apache Guacamole, a client-less remote desktop gateway, supports standard protocols like VNC, RDP, and SSH.
It is considered clientless because Guacamole delivers apps or desktops via HTML5 once installed on the back end. A free, open-source platform, Apache Guacamole is maintained by the Apache community.
Guacamole is a free, open-source tool with a nice fan base that includes individual users, businesses, and software companies. The latter groups may embed Guacamole in their products including VPNs and firewalls.
For starters, I’ll be clear about this: Parallels Secure Workspace does not use (or build on or rely on) Apache Guacamole. The solution has its own proprietary HTML5 gateway. I frequently hear the false claim that Parallels Secure Workspace uses this open-source tool, and while this is true for several competitors in our space, it is certainly not true for our solution.
No, Parallels Secure Workspace is not free nor is it an open-source tool. Rather, Parallels Secure Workspace is a commercial product. Accordingly, we provide support that includes detailed product documentation, technical support and training, commercial models for our channel partners, and more.
That’s the first big difference between Parallels Secure Workspace and the Apache product. Who will you call when you have a problem with Guacamole? What happens when security vulnerabilities are identified? And so on. Moreover, our product roadmap is very security and Zero Trust focused, with capabilities like MFA, SSL, context awareness, usage auditing, and more.
On the other hand, Apache Guacamole was hit by a severe vulnerability in July 2020. Since then, five other CVEs (Common Vulnerabilities and exposures) have been identified and reported fixed.
We have a broad channel ecosystem of certified engineers that extends globally. We also have a set of tested technology partnerships that extend and complement our perimeter.
There are also some obvious (and less obvious) differences from the technology perspective. Parallels Secure Workspace was built with simplicity in mind. It is easy to deploy and work with for both Windows and Linux admins (the latter of which are often familiar with the open-source community and likely to be familiar with Guacamole)
Now, let’s take a deeper look into the architecture and features of both solutions:
Guacamole supports SSH, VNC, and RDP. Parallels Secure Workspace supports RDP.
However, Parallels Secure Workspace also supports WebDAV and CiFS. Parallels Secure Workspace’s built-in reverse proxy supports web applications.
Neither Guacamole nor Parallels Secure Workspace were designed for graphic-intensive applications like 3D rendering, video, or running video/voice calls.
Parallels Secure Workspace includes access to file servers via WebDAV or CIFS via the files section. Parallels Secure Workspace files can be opened with associated published applications.
One can also share large and small files without the need to upload the file(s) elsewhere with Parallels Secure Workspace (e.g., into a third-party cloud like WeTransfer)
Parallels Secure Workspace features a built-in reverse proxy that provides access to internal web applications without needing RDP or remote desktop services.
Look at Parallels Secure Workspace’s intuitiveness and user-friendly look and feel, and you be the judge.
The front-end workspace is very intuitive. You can access files, various applications, and desktops easily.
The multi-monitor capabilities are better developed with multiple options available in Parallels Secure Workspace.
Parallels Secure Workspace can support the use of smart cards (e.g., eID cards) within applications (e.g. reading an eID card’s info) with its RAH (Remote Application Helper).
The RAH is the only exception to the TML5-centric story. The RAH agent must be installed on the local computers (Windows, MacOS, or Linux). In-app usage is not supported by the free Apache tool.
Otherwise, you don’t need to install other plugins or clients to work with Parallels Secure Workspace!
Parallels Secure Workspace offers exciting capabilities that make your data even more secure:
Here’s an overview of the Zero Trust capabilities of Parallels Secure Workspace:
There are also some key differences from an architecture perspective:
Parallels Secure Workspace is delivered as a virtual appliance for simplicity and speed of deployment. Apache Guacamole requires installing multiple services or multiple docker containers, which need to be linked.
Guacamole leverages an internal translation protocol (RDP Guacamole protocol HTML5), while Parallels Secure Workspace does not use an internal protocol, which makes Parallels Secure Workspace a better, more resource-optimized HTML5 gateway.
Parallels Secure Workspace can enable HA (High Availability), so in a multi-node deployment, it can fail over between nodes if issues arise.
Parallels Secure Workspace is a multi-tenancy solution right out of the box.
The architecture is simple and non-intrusive.
When comparing Apache Guacamole to Parallels Secure Workspace, we see a lot of similarities, but there are also many differences.
Based on my knowledge of Apache Guacamole —which might not be complete, and I don’t pretend to be a Guacamole expert —this blog post provides a deeper look into the elements our customers are most concerned with.
Interested in making the comparison yourself? Try Parallels Secure Workspace in your environment — download it now.
The post Parallels Secure Workspace vs. Apache Guacamole appeared first on Server and Cloud Blog.
]]>