Enterprise Mobility and Security Blog

RSS

Overview


In previous versions of Windows Server, Terminal Services enabled a server to host multiple, simultaneous user sessions. In Windows Server 2008 R2, we have renamed Terminal Services to Remote Desktop Services because it offered a choice of presentation virtualization options: sessions for those for whom scalability was most important and virtual machines for those for whom isolation was most important. Since Microsoft Virtual Desktop Infrastructure is new, this blog post describes the function that Remote Desktop Services role services (and some supplemental technology) play in enabling MS VDI.


rdv-mod3


Scenarios


Personal virtual desktops are virtual machines that are permanently assigned to users by an administrator. This configuration is saved in Active Directory Domain Services. A personal virtual desktop is typically used when a user needs a dedicated virtual machine (VM) with administrative privileges (for example, a user might want to install applications).


A virtual desktop pool is a group of identically configured virtual machines that are temporarily assigned to users by the Microsoft VDI system. Administrators can configure a VM to be a part of a pool.


Role Services and Technology Included in a Microsoft VDI Deployment


The following role services and non-RDS technologies are included in a typical VDI deployment.


Remote Desktop Connection Broker (RD Connection Broker)

The main purpose of this role service is to broker a user connection to an appropriate endpoint. Brokering of the connection involves:



  • Identifying the VM for the user to make a remote connection.

  • Preparing the VM for remote connections by communicating with the Remote Desktop Virtualization Host server (for example, waking the VM from a saved state).

  • Querying the IP address of the VM by communicating with the Remote Desktop Virtualization Host server. This IP address is returned to the Remote Desktop Session Host server running in redirection mode.

  • Monitoring user sessions in a virtual desktop pool scenario. A user with an existing session in a pool is redirected to the hosting VM.

Remote Desktop Session Host (RD Session Host) server running in redirection mode

The purpose of the RD Session Host server running in redirection mode is to securely redirect an RDP client connection to a VM. The RD Session Host server running in redirection mode does not allow interactive user sessions, unless the user requests an administrative session by using the ‘/admin’ switch.


When a user requests a VM, the RD Session Host server running in redirection mode queries the RD Connection Broker server. The RD Connection Broker server in turn provisions a VM for the user and returns its IP address to the RD Session Host server running in redirection mode. The RD Session Host server running in redirection mode will then redirect the RDP client to connect to the VM by using the IP address.


It is recommended that the RD Connection Broker role service reside on the same machine as the RD Session Host server running in redirection mode (as shown in the diagram). However, the scenario where the RD Session Host server running in redirection mode and the RD Connection Broker role service are on separate machines is also supported.


Remote Desktop Virtualization Host (RD Virtualization Host)

RD Virtualization Host is a Remote Desktop Services role service included with Windows Server 2008 R2. RD Virtualization Host integrates with Hyper-V to provide virtual machines that can be used as personal virtual desktops or virtual desktop pools.


An RD Virtualization Host server has the following functions:



  • Monitoring VM guest sessions and reporting these sessions to the RD Connection Broker server.

  • Preparing the VM for a remote desktop connection when requested by the RD Connection Broker server.

In order for RD Virtualization Host to perform the above functions, the guest OS must be configured to give permission to RD Virtualization Host. Refer to the Deploying Virtual Desktop Pools by Using Remote Desktop Web Access Step-by-Step Guide for further details.


Remote Desktop Web Access (RD Web Access)

RD Web Access provides a user with an aggregated view of remote applications and desktop connections via a web browser. Using RD Web Access, a user can view all remote applications and virtual desktops (personal virtual desktops and virtual desktop pools) published to that user. VDI VMs are also accessible via the RADC feature (start menu) in Win7 clients.


Refer to the blog post for RD Web Access configuration in a Microsoft VDI deployment.


Remote Desktop Gateway (RD Gateway)

RD Gateway is an optional role service in a Microsoft VDI deployment. Its main purpose is to securely route RDP connections over the Internet through a firewall.


Application Virtualization (App-V)

App-V can simplify management of Virtual Machine images within a Microsoft VDI environment. Using App-V, you can dynamically load and assign applications on a user group basis, reduce application testing, reduce application to application conflicts, and increase application compatibility. 


For more information on the next version of App-V refer to Get your applications virtualized on Windows 7 Beta with Microsoft App-V.


System Center Virtual Machine Manager (SCVMM)

SCVMM’s console is a one stop shop for VM Management. As part of Microsoft VDI solution it not only provides the Hyper-V UI functionality but enables fast and easy VM provisioning, which is helpful in large deployments.


Need More Details?


To learn more, refer to the Remote Desktop Services Getting Started guides.