In the previous blog post, we learnt how to create the Host Pools for Remote Apps Azure Virtual Desktop – PowerShell – Create a Host Pool, Application Group and Workspace for RemoteApp aka Published Applications | AskAresh and today we are going to create the host pool for Desktops. It’s an identical post to the RemoteApps only difference here will be specific input parameters will change to deliver the Desktop experience. We will deploy the following features within Azure Virtual Desktop using PowerShell:

• Create Host Pool with Type – Desktop
• Create the Application Group (AG)
• Create an Workspaces
• Assign the Azure Active Directory Group to the (AG)

I will break down the code block into smaller chunks first to explain the critical bits, and in the end, I will post the entire code block that can be run all at once. In this way, explaining block by block becomes easier than pasting one single block.

Desktop

Desktop – This is a way to provide end-users with a full Desktop experience along with the applications installed in the base image. Note this method is used for delivering non-persistent desktops as we are using pooled. If you want to provide persistence on top of these desktops you will have to leverage FSLogix.

Pre-requisites

Following are the pre-requisites before you begin

• PowerShell 5.1 and above
• Azure Subscription
• Permissions within the Azure Subscription for the creation of AVD – Host Pools
• Assumption
  • You have an existing Resource Group (RG)
• Azure PowerShell Modules – Az.DesktopVirtualization

Sign to Azure

To start working with Azure PowerShell, sign in with your Azure credentials.

Connect-AzAccount

Variable Region

Delcare all the variable within this section. Lets take a look at what we are declaring within the script:

• Existing Resource Group within the Azure Subscription (AZ104-RG)
• A location where you are deploying this Host Pool (Australia East)
• Name of the Host Pool (D-HP01)
• Host Pool Type (Pooled) as it will be shared with multiple end-users
• Load balancing method for the Host Pool (DepthFirst)
• Maximum users per session host VM (10)
• The type of Application Group (Desktop). As we are providing full desktop experience.
• Application Group Name ($HPName-DAG)
• Workspace grouping name ($HPName-WRK01)
• Azure AD group that will be assigned to the application group (XXXX4b896-XXXX-XXXX-XXXX-33768d8XXXXX)

# Get existing context
$currentAzContext = Get-AzContext

# Your subscription. This command gets your current subscription
$subscriptionID = $currentAzContext.Subscription.Id

# Existing Resource Group to deploy the Host Pool
$rgName = "AZ104-RG"

# Geo Location to deploy the Host Pool
$location = "australiaeast"

# Host Pool name
$HPName = "D-HP01"

# Host Pool Type Pooled|Personal
$HPType = "Pooled"

# Host Pool Load Balancing BreadthFirst|DepthFirst|Persistent
$HPLBType = "DepthFirst"

# Max number or users per session host
$Maxusers = "10"

# Preffered App group type Desktop|RailApplications
$AppGrpType = "Desktop"

# ApplicationGroup Name
$AppGrpName = "$HPName-DAG"

# Workspace Name
$Wrkspace = "$HPName-WRK01"

# AAD Group used to assign the Application Group
# Copy the Object ID GUID from AAD Groups Blade
$AADGroupObjId = "XXXXXX-2f2d-XXXX-XXXX-33768d8XXXXX"

Execution block

Execution code block within this section. Lets take a look at what we are we executing within the script:

• Create the host pool with all the mentioned variables, tags and whether the validation enivornment yes/no.
• Create the application group and tie it to the host pool
• Finally, we create the workspace and tie it to the application group and hostpool
• Last step, we assign the AAD group object ID to the Application Group for all entitlement purposes.

# Create the Host Pool with Desktop Configurations
try
{
    write-host "Create the Host Pool with Pooled Desktop Configurations"
    $DeployHPWDesk = New-AzWvdHostPool -ResourceGroupName $rgName `
        -SubscriptionId $subscriptionID `
        -Name $HPName `
        -Location $location `
        -ValidationEnvironment:$true `
        -HostPoolType $HPType `
        -LoadBalancerType $HPLBType `
        -MaxSessionLimit $Maxusers `
        -PreferredAppGroupType $AppGrpType `
        -Tag:@{"Billing" = "IT"; "Department" = "IT"; "Location" = "AUS-East" } `
        -ErrorAction STOP
}
catch
{
    Write-Host $_.Exception.Message -ForegroundColor Yellow
}

# Create the Application Group for the Desktop Host Pool
try
{
    write-host "Create the Application Group for the Desktop Host Pool"
    $CreateAppGroupDesk = New-AzWvdApplicationGroup -ResourceGroupName $rgName `
        -Name $AppGrpName `
        -Location $location `
        -HostPoolArmPath $DeployHPWDesk.Id `
        -ApplicationGroupType $AppGrpType `
        -ErrorAction STOP
}
catch
{
    Write-Host $_.Exception.Message -ForegroundColor Yellow
}
    

# Create the Workspace for the Desktop Host Pool
try
{
    write-host "Create the Workspace for the Desktop Host Pool"
    $CreateWorkspaceDesk = New-AzWvdWorkspace -ResourceGroupName $rgName `
        -Name $Wrkspace `
        -Location $location `
        -ApplicationGroupReference $CreateAppGroupDesk.Id `
        -ErrorAction STOP
}
catch
{
    Write-Host $_.Exception.Message -ForegroundColor Yellow
}

# Assign the AAD group (Object ID)  to the Application Group
try
{
    write-host "Assigning the AAD Group to the Application Group"
    $AssignAADGrpAG = New-AzRoleAssignment -ObjectId $AADGroupObjId `
        -RoleDefinitionName "Desktop Virtualization User" `
        -ResourceName $CreateAppGroupDesk.Name `
        -ResourceGroupName $rgName `
        -ResourceType 'Microsoft.DesktopVirtualization/applicationGroups' `
        -ErrorAction STOP
}
catch
{
    Write-Host $_.Exception.Message -ForegroundColor Yellow
}

Final Script

Here I will paste the entire script block for seamless execution in a single run. Following is the link to my GitHub for this script – avdwin365mem/createhp-ag-wk-DSK at main · askaresh/avdwin365mem (github.com)

# Connect to the Azure Subcription
Connect-AzAccount

# Get existing context
$currentAzContext = Get-AzContext

# Your subscription. This command gets your current subscription
$subscriptionID = $currentAzContext.Subscription.Id

# Existing Resource Group to deploy the Host Pool
$rgName = "AZ104-RG"

# Geo Location to deploy the Host Pool
$location = "australiaeast"

# Host Pool name
$HPName = "D-HP01"

# Host Pool Type Pooled|Personal
$HPType = "Pooled"

# Host Pool Load Balancing BreadthFirst|DepthFirst|Persistent
$HPLBType = "DepthFirst"

# Max number or users per session host
$Maxusers = "10"

# Preffered App group type Desktop|RailApplications
$AppGrpType = "Desktop"

# ApplicationGroup Name
$AppGrpName = "$HPName-DAG"

# Workspace Name
$Wrkspace = "$HPName-WRK01"

# AAD Group used to assign the Application Group
# Copy the Object ID GUID from AAD Groups Blade
$AADGroupObjId = "dccXXXXX-2f2d-XXXX-XXXX-33768d8bXXXX"

# Create the Host Pool with Desktop Configurations
try
{
    write-host "Create the Host Pool with Pooled Desktop Configurations"
    $DeployHPWDesk = New-AzWvdHostPool -ResourceGroupName $rgName `
        -SubscriptionId $subscriptionID `
        -Name $HPName `
        -Location $location `
        -ValidationEnvironment:$true `
        -HostPoolType $HPType `
        -LoadBalancerType $HPLBType `
        -MaxSessionLimit $Maxusers `
        -PreferredAppGroupType $AppGrpType `
        -Tag:@{"Billing" = "IT"; "Department" = "IT"; "Location" = "AUS-East" } `
        -ErrorAction STOP
}
catch
{
    Write-Host $_.Exception.Message -ForegroundColor Yellow
}

# Create the Application Group for the Desktop Host Pool
try
{
    write-host "Create the Application Group for the Desktop Host Pool"
    $CreateAppGroupDesk = New-AzWvdApplicationGroup -ResourceGroupName $rgName `
        -Name $AppGrpName `
        -Location $location `
        -HostPoolArmPath $DeployHPWDesk.Id `
        -ApplicationGroupType $AppGrpType `
        -ErrorAction STOP
}
catch
{
    Write-Host $_.Exception.Message -ForegroundColor Yellow
}
    

# Create the Workspace for the Desktop Host Pool
try
{
    write-host "Create the Workspace for the Desktop Host Pool"
    $CreateWorkspaceDesk = New-AzWvdWorkspace -ResourceGroupName $rgName `
        -Name $Wrkspace `
        -Location $location `
        -ApplicationGroupReference $CreateAppGroupDesk.Id `
        -ErrorAction STOP
}
catch
{
    Write-Host $_.Exception.Message -ForegroundColor Yellow
}

# Assign the AAD group (Object ID)  to the Application Group
try
{
    write-host "Assigning the AAD Group to the Application Group"
    $AssignAADGrpAG = New-AzRoleAssignment -ObjectId $AADGroupObjId `
        -RoleDefinitionName "Desktop Virtualization User" `
        -ResourceName $CreateAppGroupDesk.Name `
        -ResourceGroupName $rgName `
        -ResourceType 'Microsoft.DesktopVirtualization/applicationGroups' `
        -ErrorAction STOP
}
catch
{
    Write-Host $_.Exception.Message -ForegroundColor Yellow
}

Next Steps on the Host Pool

Now that the host pool, application group and workspaces are ready following are the next steps involved:

• Generate a registration token
• Add the session host virtual machine to the host pool

I hope you will find this helpful information for deploying a host pools, application group and workspaces within Azure Virtual Desktop. If you want to see a Powershell version of the adding the session host activities, leave me a comment below or on my socials. Please let me know if I have missed any steps or details, and I will be happy to update the post.

Thanks,
Aresh Sarkari

On 9^th Aug 2018, I took the most difficult decisions of my life to leave my country India and one of the best companies in information technology VMware after working for 4.5 years. Our search for a better standard of living in a developed country and secured future for my kids ended up in Australia. We did evaluate Canada & Germany as well, but looking at all the factors, Australia was the place which we locked down to migrate and settle.

Back in early June, I started looking for an internal transfer within VMware. However, after talking to multiple bosses and divisions, nothing was materializing for an internal move. I had to make a hard choice to leave VMware and move ahead with my decision of moving countries. I began my job hunt during my notice period within VMware and 15 days later I came across a wonderful opportunity in Dell EMC @ Sydney, Australia. I am pleased that I got an opportunity in the parent and consortium of companies

Although I am going to miss working with a lot of colleagues @ VMware. But I am looking forward to working with new colleagues, projects and challenges in Dell EMC. It would be fun learning new things and solving problems from the real world and get an outside perspective. Will keep in touch on Twitter and LinkedIn

Thanks,
Aresh Sarkari

This year at VMworld, myself and my colleague Simon Long had the opportunity to talk about a project we’ve been working on for the past few years. We’ve been re-redesigning and deploying VMware’s internal Horizon Desktop environments.

Session Summary

“How does VMware architect its own global VMware Horizon desktop environment?” “Has it encountered the same obstacles we are facing?” Over the past two years, VMware has been re-architecting and deploying its virtual desktop infrastructure with VMware Horizon, VMware App Volumes, and VMware User Environment Manager running on top of the full VMware software-defined data center stack (VMware vSphere, VMware vSAN, VMware NSX) and integrating with VMware vRealize Operations Manager and VMware vRealize Log Insight. In this session, the lead architects will reveal all.

Our session (ADV1255BU – The Secret Sauce Behind VMware’s Internal VMware Horizon Desktop) includes the following sections:

• Where we we? – Why did we need to kick off this project (from the beginning)
• What do we need? – Revisiting the business and technical requirements (from 3:05)
• How do we do this better? – How do we design this new infrastructure making sure we don’t hit the same issues again (from 5:13)
• Where we are today? – A look at what we architected and deployed  (from 9:12)
• What did we learn? – What challenges did we face along the way (from 30:45)
• Where do we go from here? – How can we improve upon what we have built (from 41:51)

I hope you enjoy it and find it useful. Please contact myself or Simon if you have any questions around our session.

Thanks,
Aresh

I thought I would share some pretty exciting news with you guys, I’ve recently received an award internally within VMware for a cool project that myself and my colleague Simon Long have been working on for the past 6-8 months. The project in question is called OneDesk. I’ll explain more about OneDesk shortly.

CIO Innovation Award

The award we won is called the VMware CIO Innovation award. Here is the description of the Innovation category:

Aresh Sarkari – VMware CIO 2017 Innovation Award

I wasn’t very lucky to receive the award in-person as the award arrived in India a couple of days late and by then Bask Iyer had to leave back for PA, CA.

OneDesk

The project myself and Simon Long have been working on is called OneDesk. For those of you who attended our VMworld session: The Secret Sauce Behind VMware’s Internal Horizon Desktop Deployments you’d have heard us talking about it during our session. For those of you who were unfortunate enough to miss it, I’ll explain all about it now.

What is OneDesk?

OneDesk is many things to many people. Here are some of its main functions:

EUC Dogfooding environment
OneDesk is an End User Computing (EUC) environment created from un-used production hardware where we deploy pre-release versions of our EUC software (Horizon, App Volumes and User Environment Manager). This allows us to test our products before we make them publicly available to our customers and providing feedback to the product teams of any issues that we encounter throughout or testing.

Pre-Production Horizon Environment
OneDesk also acts a Pre-Production environment for VMware’s internal Production Horizon desktop environments in the US, EMEA and India. The availability of our production Horizon deployments is extremely important to the business and often updating software can lead to service outages. By deploying the newly released EUC software into OneDesk as early as possible, we can use our experiences to make decisions on when we will upgrade the production environments.

Next-Generation EUC Environment
OneDesk also acts a ‘Next-Generation’ environment for our production Horizon desktop environments in the US, EMEA and India. The availability of our production Horizon deployments is extremely important to the business and often introducing new products or configuration changes can lead to service outages. We will be deploying all new products and configurations into OneDesk first, allowing us to iron out any creases and monitor stability before we consider deploying these changes into the production environments.

VMware on VMware
Last but not least, this is a VMware on VMware initiative. Where there is a business need, we look to utilize as many of VMware’s products as possible. By utilizing our own products early in the development cycle we are able to identify bugs and offer feedback to our product teams to help improve our customer’s experience once the products are released.

How is OneDesk different from the VMware production Horizon desktop environments?

The table below gives you an idea of how the services differ:

The table below gives you an idea of how the product version differs between OneDesk and Production: (Version may have changed since publication)

Here is a list of features that we’ve used OneDesk to test before we deploy the features into our production environments:

• Instant Clones
• Blast Extreme
• Unified Access Gateway
• Enrollment Server / True SSO
• Skype For Business Plugin
• Horizon Smart Policies (UEM)
• NSX Edge Load-Balancer
• NSX Distributed Firewall (Micro-Segmentation)
• Sparse Swap Files
• Client Cache

Product Improvement

Not only does deploying early releases of software allow us to test some really cool new features that we’ve been able to implement into Production, this also allows us to capture many bugs before we release the products to our customers. Hopefully, this means that you, our customers, have a must most stable product that you can rely on.

I’ve really enjoyed designing and deploying OneDesk and watching its value to VMware grow as we utilize it more and more. I’m looking forward to seeing where we can take OneDesk in the future. Watch this space.

Thanks,
Aresh Sarkari

Folks, I have submitted a session for the VMworld 2017. If you would like to see them go on stage then please vote!

My Session:
The secret sauce behind VMware’s internal Horizon desktop deployments [1255]
Ever asked yourself “How does VMware architect their own global Horizon desktop environment?”, “Have they encountered the same obstacles we are facing?” Over the past two years VMware has been re-architecting and re-deploying their virtual desktop infrastructure with Horizon, App Volumes and User Environment Manager (UEM) running on top of the full VMware SDDC stack (vSphere, VSAN, NSX) and integrating with vRealize Operations Manager and Log Insight. In this session the lead architects will reveal all.

Direct Link to my session VOTE HERE: https://my.vmworld.com/scripts/catalog/uscatalog.jsp?search=1255

How to Vote?
Create a new account if you don’t have a existing one – https://www.vmworld.com/myvmworld.jspa and click on “Create Account”

VMworld 2017 Catalogue
Search in VMworld 2017 Catalogue – https://my.vmworld.com/scripts/catalog/uscatalog.jsp. Search here for other interesting sessions.

I highly recommend voting on other great sessions submitted by my colleagues.

Please Vote!
Aresh Sarkari