• View Communities
    • Citrix Developer Network
      The place for unfiltered straight talk on Citrix products. Blogs, code downloads, best practices, APIs, and more can all be found here.
    • Citrix Ready Community Verified
      Does it work with Citrix? Application compatibility questions are a thing of the past with the new Citrix Community Verified site.
    • Blogs
      Learn the latest from the Citrix employees who are building application delivery infrastructure technologies.
    • Blogosphere
      The Citrix Blogosphere is a window into the thousands of conversations taking place about Citrix and Application Delivery.
  •  Sign In
The Citrix Blog
Personal Blog
Chris Fleck
Blogs
Profile
Related Tags
xenapp
Added by Chris Fleck, last edited by Chris Fleck on Oct 23, 2009  (view change)
Permalink | Twitter Post to Twitter | Comments (3) | Views (2549) |
23 Oct 2009 01:15 PM EDT
The User Installed App Debate Continues, Is This an Obstacle to VDI ?
[ Tags: vdi ,   desktop virtualization ,   xendesktop ,   citrixonline ,   team-executive-cto ,   xd4 ]
posted by Chris Fleck

There has been a lively discussion going on in the VDI related Blogosphere kicked off here by Dan Feller and Brian Madden here. This issue of whether or not to allow "User Installed apps "exemplifies the dichotomy that IT Pros struggle with architecting a system that meets the business challenges of security, cost, and compliance plus at the same time satisfying the needs of knowledge workers with high demands and expectations.

As VDI expands from task oriented deployments to broader general purpose PC replacement scenarios this issue is likely to gain more attention. Most companies don't condone user installed apps but many do allow users to have administrator rights to their work PC and may look the other way regarding what an individual installs on their own. When it comes time to virtualize everything for VDI however now they need to pay attention. But how big an issues it ?

Dan indicates from an IT best practice standpoint it is better to develop an effective workflow that speeds and automates the IT approval, packaging, and delivery of new apps that individuals need to be productive. Will knowledge workers accept this solution ? As the commenter's indicate, this works for some but not all situations. Brian Madden proposed another alternative, just give the power users a second VM for unique/personal apps. Keep the corporate VM pristine under IT control and let users have their own separate sandbox if warranted. This may be a bit of a brute force solution but would work If the costs are justified. I like it because I do it myself now, although I use lab VM's as a sandbox vs IT delivered VM's. The commenter's however also found issues with this solution due to costs plus compliance issues about what SW/data gets installed into those user VM's. Some offered up BYOC as a solution if users really needed their own environment. There are many 3rd parties looking to enable User Installed apps as well, however even if the technical challenges are solved will IT support/endorse/allow this? Let me put forth another option/proposal, sometimes when I'm on a system thats not mine or a thin client I connect to my home PC via GoToMyPC and keep it running as long as I need it. This gives me access to apps that are not provided by IT, I have all the freedom to install what ever I want and IT doesn't need to deal with infrastructure costs or compliance issues. Yes this assumes that the power user has their own powered on PC and GoToMyPC does not currently have all of the features I might want for this solution, but you get the idea.

Let us know what you situations you face, is it a problem and do you see a solution for it? If you have another idea or comments on the above, please share it.

Labels

vdi vdi Delete
desktop virtualization desktop_virtualization Delete
xendesktop xendesktop Delete
citrixonline citrixonline Delete
team-executive-cto team-executive-cto Delete
lang-eng lang-eng Delete
xd4 xd4 Delete
Enter labels to add to this page:
Please wait 
Looking for a label? Just start typing.

Comments (3)

 

  1. Oct 23

    Faisal Iqbal says:

    Not a bad idea. Perhaps a "Home" version of the VDA agent could be useful here. ...

    Not a bad idea. Perhaps a "Home" version of the VDA agent could be useful here. One that could allow users to seamlessly reverse publish applications from their home-based Windows PC.

    Imagine a virtual VDI desktop or a "locked down" published desktop where I can not only get access to my approved corporate applications, but I also have a PN Agent running on this corporate image that is reaching back to my Home PC to enumerate and launch my "personal" applications via ICA/HDX.

  2. Oct 23

    Anonymous says:

    If this would let my users ( & me ) sync their iPhone to iTunes at home thi...

    If this would let my users ( & me ) sync their iPhone to iTunes at home this would be great !

  3. Oct 28

    Anonymous says:

    I see possible solutions to be 1)  Give each user their own private deskto...

    I see possible solutions to be

    1)  Give each user their own private desktop.

    2)  Use software like Atlantis iLiO which lets users install their own applications while still using a common base image even when the base image is updated. The software allows images to be managed at the file level rather than the block level which is what Provisioning Services uses.

    3)  Implement a virtual "application" container similar to those for application streaming products but make the container for the entire desktop.  Any changes that the user makes could be applied to this container which would persist after the user logs off.  This last option needs to be developed as I'm not aware of any vendor providing this functionality.

Add Comment