5.2 KiB
title, type, source-type, category, tags, date-added, video-source, audio-source, status
| title | type | source-type | category | tags | date-added | video-source | audio-source | status | |||
|---|---|---|---|---|---|---|---|---|---|---|---|
| Public Cloud Learning Sessions- AWS end user compute services - 20240430 160120-Meeting Recording | cloud-learning | video | DevOps & SRE/10_OpenText-Series |
|
2026-04-14 | nas:///volume2/work/Public Cloud Learning Sessions/Public Cloud Learning Sessions- AWS end user compute services - 20240430_160120-Meeting Recording.mp4 | summarized (Gemini 摘要) |
Public Cloud Learning Sessions- AWS end user compute services - 20240430 160120-Meeting Recording
Source: NAS /volume2/work/Public Cloud Learning Sessions/Public Cloud Learning Sessions- AWS end user compute services - 20240430_160120-Meeting Recording.mp4
Type: VIDEO | Category: 10_OpenText-Series
Status: 🟡 Awaiting Whisper transcription → Summary
AWS and User Compute Services
Christian O'Donough from AWS presented a learning session on AWS and user compute (EUC) services, covering virtual desktops, application streaming, and security considerations. The session aimed to provide an introduction to AWS EUC services, explain how to decide which service is best, and discuss security aspects of Amazon Workspaces and AppStream 2.0.
The global pandemic accelerated the shift to remote and hybrid work models, requiring organizations to adapt quickly. Modern workforces include diverse users with varying needs, from task workers to knowledge workers, using both company-issued and personal devices. IT organizations face challenges in maintaining productivity, ensuring security, and managing costs in this hybrid environment. AWS EUC portfolio addresses these challenges with virtual desktops and application streaming services.
AWS offers several EUC options:
- Workspaces and AppStream 2.0: All-inclusive virtual desktop services, differing in persistence. Workspaces are fully persistent, while AppStream 2.0 offers selective persistence.
- Workspace Core: Provides access to Workspaces VDI infrastructure via API for third-party solutions like Horizon View or Citrix.
- Workspace Web: A low-cost, secure web browser for internal websites and SaaS applications.
- AppStream 2.0: A secure, reliable, and scalable solution for streaming applications from any location.
- AppStream 2.0 is a great low cost alternative for customers that don't require a fully persistent desktop.
The choice of service depends on the use case. Workspaces suit knowledge workers needing a full desktop, while AppStream is suitable for labs, training, and bastion hosts. Workspace Web is ideal for secure browsing. Fully persistent desktops (Workspaces) offer a one-to-one instance management, where application states and settings persist between sessions. Non-persistent desktops (AppStream) provide a fresh desktop at each logon, with options for creating application and storage connectors for some persistence.
Operational excellence considerations include OS requirements. Workspaces supports Ubuntu and Windows, while AppStream is exploring other Linux flavors. AppStream instances are created from a base image, simplifying application management. Workspaces are deployed from bundles, allowing users to install applications with appropriate permissions. Monitoring is supported through CloudWatch events and third-party agents.
Reliability considerations include autonomy, user configuration persistence (Workspaces), and network latency. WSP protocol is designed for high-latency networks. Disaster recovery strategies involve building out workspaces in another region or utilizing AppStream's auto-scaling capabilities.
Performance-wise, all services support cut and paste with configurable policies. AppStream supports file uploads/downloads and offers a Windows client for native application support. Workspaces support smart cards, webcams, and various native clients. Hardware requirements vary, with AppStream offering more instance types.
Cost optimization is achieved through concurrency of use (AppStream) and auto-stop features (Workspaces). A newer multi-tenant approach for AppStream allows multiple users per instance. Security measures include Active Directory integration, encryption, IAM profiles, and device authentication. With so many remote workers organizations are struggling to protect endpoints, as well as their IP and data from bad actors.
Workspaces maximize agility, productivity, security, and reliability while controlling costs. It suits hybrid workforces, BYOD users, developers, and compute-intensive workloads. The architecture involves a service VPC (managed by AWS) and a customer VPC, with two network interfaces for each workspace.
AppStream offers application streaming and virtual desktops with selective persistence. It allows centralized app management, flexible hardware types, and branding options for ISVs. Use cases include non-persistent desktops, secure access to corporate resources, online trials, and cloud migrations. Admins can control file movement to limit data transfer.
Maintaining a strong security posture involves secure streaming protocols, built-in data protection policies, device certificates, multi-factor authentication, and VPC interface endpoints. SAML-based authentication enhances security and streamlines user experience.