I’ve been getting asked quite a bit around what steps should be taken for doing a simple Proof of Concept (POC) of Horizon Mobile so I figured I would take the time to write up a few steps, some tips, and references.
First off, some things to work through…
- Do you have a demo lab?
Having a Demo Lab is a great way to test anything. If you don’t have a demo lab environment which runs separate from your production environment, now might be a great time to set one up. Make sure you have a few things in it, such as…
- vSphere/vCenter (of course)
- Active Directory
- WiFi (preferably secured)
While Internet access isn’t a necessity for everyone’s Demo Lab, it is nice to have. Just remember to protect the demo lab as you would the production network. It’s especially good to have the Demo Lab on a completely separate network segment to keep it separate from production.
So now on to the Horizon Mobile Proof of Concept.
Simple HMM POC Steps:
- Decide upon a static IP and Fully Qualified Domain Name (FQDN). A static IP is required. If using a signed SSL Certificate (public or private), DNS is also required.
- Setup DNS records. Both internal and external FQDN names (external is only necessary if external/over the Internet access is going to be tested). Make sure to setup a forward lookup (A Record) which resolves to the SSL Certificate if an SSL Certificate is used. Reverse lookup (Pointer) is not necessary but recommended.
- Load Horizon Mobile Virtual Appliance OVA into vCenter/vSphere.
- While you are waiting for the previous step to complete, go get your environment email settings – specifically the SMTP server settings, including the authentication settings. This is necessary for the setup of the appliance.
- Configure the appliance. This will be the general settings in the console and the Web UI once the console boots up completely. These settings will include the IP configurations, and the Hostname
- If you DO NOT have email setup, you need to do that now. This is probably the most challenging part of the whole Horizon Mobile POC setup as this requires finding all of the SMTP settings of your environment (server, SSL, Port, User Authentication, a test email sent and received with activation code, and that code entered into the correct box). Once this is done, DO NOT DO ANY OTHER MODIFICATIONS – Just click SAVE AND RESTART.
If email is setup, continue on.
SSL Key Chain:
- Load your public or private SSL certificates into the Web UI.
- Load your public or private SSL certificates into the appliance console.
Here you will login to the Web console of you Horizon Mobile appliance and select the Security section in the left-side pane. In the top Window of the Security section there is an Upload New Certificate link to load in your certificates. Remember to load in ALL certificates, including the child, any intermediate certificates, and the parent.
WARNING: Do this before loading in any phones!
For this, you will need to enable SSH/SCP root login on the appliance (just modify line 41 of the /etc/ssh/sshd_config file and restart SSHD using the /etc/rc.d/sshd restart command. Once you can SCP/SSH into the Horizon Mobile appliance, you’ll need to load up the certificates. Here, it’s best to follow the Horizon Mobile Manager Installation and Configuration Guide – starting at page 23.
VMware Switch Setup Instructions:
NOTE: It is strongly suggested VMware Switch setup on the Horizon Mobile device be done over Wifi.
- Download the VMware Switch app from Google Play. Search for “VMware Test” or “VMware Switch”. This should be the latest version.
- Once VMware Switch is installed onto the device, start the VMware Switch app.
- Login with your Username, Password, and Horizon Mobile Server (a.k.a. the Appliance).
NOTE: You’ll need a Google Play account to do this. I suggest setting up a Google account and using the email piece to “demo” the personal phone side of things. Makes for a nice touch.
NOTE: If you have any SSL Certificate issues when entering the HMM Server, then in order to disable the SSL certificate warning, on the Android mobile device go to HOME | SETTINGS | APPS | DOWNLOADED (scroll to ALL APPS) | VMware Switch | Manage Space and UNCHECK Authenticate Server. Then go back into VMware Switch and login with the configured User, Password and Server.