Access Infrastructure for the On Demand Enterprise Roddy

Access Infrastructure for the On Demand Enterprise Roddy Rodstein Systems Engineer Citrix Systems, Inc.

Agenda • Access Infrastructure • Access Suite Overview • Secure Gateway Review • COFFEE BREAK! • Demo • Citrix Strategic Directions 2 Citrix Company Confidential © 2003 Citrix Systems, Inc. —All rights reserved.

…Similar to Cable Entertainment Providers On-Demand Entertainment CNN HBO ESPN TNT PPV Any TV Any Network 3 Citrix Company Confidential Secure Easy Instant Any Show Any Program © 2003 Citrix Systems, Inc. —All rights reserved.

The On Demand Enterprise Allows IT services to be offered as a computing utility… Citrix Access Infrastructure Portal Apps Meta. Frame Access Suite Web Apps Windows Apps UNIX Apps Web Services Any Device Any Network 4 Citrix Company Confidential Secure Easy Instant Any Application © 2003 Citrix Systems, Inc. —All rights reserved.

The On Demand Enterprise Allows IT services to be offered as a computing utility… Display Organize Protect Deliver Citrix Access Infrastructure Portal Apps Web Apps Windows Apps UNIX Apps Manage Any Device Any Network 5 Citrix Company Confidential Secure Easy Instant Web Services Any Application © 2003 Citrix Systems, Inc. —All rights reserved.

Building Blocks of the Access Infrastructure Allows IT services to be offered as a computing utility… Manage 6 Citrix Meta. Frame Access Suite Overview Display Organize Protect Deliver Citrix Access Infrastructure Virtualization of desktop, applications and IT services— native and synthetic

Building Blocks of the Access Infrastructure Allows IT services to be offered as a computing utility… Manage 7 Citrix Meta. Frame Access Suite Overview Display Organize Protect Deliver Citrix Access Infrastructure Organization and self -service to applications and information, personal and predictive

Building Blocks of the Access Infrastructure Allows IT services to be offered as a computing utility… Manage 8 Citrix Meta. Frame Access Suite Overview Display Organize Protect Policy-based control of access - who, where, when and how Deliver Citrix Access Infrastructure

Building Blocks of the Access Infrastructure Allows IT services to be offered as a computing utility… Manage 9 Citrix Meta. Frame Access Suite Overview Display Organize Protect Device and network independence quality of service and pervasiveness of connectivity Deliver Citrix Access Infrastructure

Building Blocks of the Access Infrastructure Allows IT services to be offered as a computing utility… Display Organize Protect Deliver Citrix Access Infrastructure Manage Instrumentation, measurement, observation, and management of service usage, quality and security 10 Citrix Meta. Frame Access Suite Overview

The Citrix Meta. Frame Access Suite is… Allows IT services to be offered as a computing utility… Metaframe Presentation Server Meta. Frame Secure Access Manager Meta. Frame Password Manager USERS Meta. Frame Conferencing Manager Citrix Access Infrastructure INFORMATION Management Services Any Device Any Network 11 Citrix Company Confidential Secure Easy Instant Any Application © 2003 Citrix Systems, Inc. —All rights reserved.

Access: Core to Business Strategy IT Centralization Branch Office Expansion Wireless Mobility Business Continuity Partner Commerce Access Strategy Regulatory Compliance Mergers & Acquisitions Teleworking 12 Citrix Company Confidential © 2003 Citrix Systems, Inc. —All rights reserved.

The Citrix Meta. Frame Access Suite 13 Meta. Frame Presentation Server Manage enterprise applications from a central location and access them from anywhere Meta. Frame Secure Access Manager Secure remote access over the Web to any application, IT service or information source Meta. Frame Password Manager Access all password-protected applications running in the Citrix Meta. Frame environment Meta. Frame Conferencing Manager Work concurrently and collaboratively on the same applications and documents Citrix Company Confidential © 2003 Citrix Systems, Inc. —All rights reserved.

Citrix Meta. Frame XP Presentation Server, Feature Release 3 • Microsoft Windows Server 2003 support • Fast downloading of graphics and bitmaps • Improved printing support and quality • Simplified license activation • Integration with Microsoft Operations Manager • Enhanced resource management • Better remote server management • Management console updated • Windows XP “luna” technology support • ICA Client for Java™ usability improvement 14 Citrix Company Confidential © 2003 Citrix Systems, Inc. —All rights reserved.

Citrix Meta. Frame XP Windows 2000 Value-Add Unparalleled Manageability & Scale • Application publishing • Program Neighborhood® • Anonymous user support • Content publishing • Content redirection • Novell® NDS® Support • User Policies • Delegated Administration • Centralized mgmt. console • Connection control • CPU prioritization • 1000+ servers in farm • 1 -to-1 Shadowing • 1 -to-M/M-to-1 shadowing • Cross-server shadowing • Shadowing indicator • Auto client printer detection • Universal print driver • Auto client update • Business recovery 15 • Web-based client install Citrix Company Confidential • Resource-based load balancing • Load balancing reconnect • Schedule app availability • Specify client IP range • Application monitoring • Customized billing reports • Track user access to apps • Centrally install apps • Distribute service packs • Package customized installs • Integrate with Network Management consoles Total “Net” Leverage • NFuse Classic • Support for multiple farms • Support for NFuse Elite Ultimate Flexibility • Non-Windows client access • 16 -bit audio • Support for direct asynch • Com port redirection • Automatic drive redirection • Client drive remapping • Speed. Screen™ 3 compression • Text-entry Prediction • Instant Mouse-Click Feedback • High/true color depth & greater video resolution • User collaboration • Panning & scaling (handhelds) • Slow performance link opt’s • Pass-through authentication • Seamless windows • Multi-monitor support • Client time zone support • Application Save Position End-to-End Security • Citrix Secure Gateway • SSL/TLS 128 -bit encryption • Support for digital certificates • Socks 4 & 5 proxy support • Smart card support © 2003 Citrix Systems, Inc. —All rights reserved.

Citrix Meta. Frame XP Windows Server 2003 Value-Add Unparalleled Manageability & Scale • Application publishing • Program Neighborhood® • Anonymous user support • Content publishing • Content redirection • Novell® NDS® Support • User Policies • Delegated Administration • Centralized mgmt. console • Connection control • CPU prioritization • 1000+ servers in farm • 1 -to-1 Shadowing • 1 -to-M/M-to-1 shadowing • Cross-server shadowing • Shadowing indicator • Auto client printer detection • Universal print driver • Auto client update • Business recovery 16 • Web-based client install Citrix Company Confidential • Resource-based load balancing • Load balancing reconnect • Schedule app availability • Specify client IP range • Application monitoring • Customized billing reports • Track user access to apps • Centrally install apps • Distribute service packs • Package customized installs • Integrate with Network Management consoles Total “Net” Leverage • NFuse Classic • Support for multiple farms • Support for NFuse Elite Ultimate Flexibility • Non-Windows client access • 16 -bit audio • Support for direct asynch • Com port redirection • Automatic drive redirection • Client drive remapping • Speed. Screen™ 3 compression • Text-entry Prediction • Instant Mouse-Click Feedback • High/true color depth & greater video resolution • User collaboration • Panning & scaling (handhelds) • Slow performance link opt’s • Pass-through authentication • Seamless windows • Multi-monitor support • Client time zone support • Application Save Position End-to-End Security • Citrix Secure Gateway • SSL/TLS 128 -bit encryption • Support for digital certificates • Socks 4 & 5 proxy support • Smart card support © 2003 Citrix Systems, Inc. —All rights reserved.

Citrix Meta. Frame XP Windows Server 2003 Value-Add • Resource-based load • Automatic drive redirection balancing • Client drive remapping • Load balancing reconnect • Speed. Screen™ 3 compression • Application publishing • Schedule app availability • Text-entry Prediction • Program Neighborhood® • Specify client IP range • Instant Mouse-Click Feedback • Anonymous user support • Application monitoring • High/true color depth & greater • Content publishing • Customized billing reports video resolution • Content redirection • Key Features • Track access to apps • User collaboration Q 1 user 2004: • Novell® NDS® Support install apps • Panning & scaling (handhelds) • Support for • Centrally USB Scanners and Bar Code Readers • User Policies • Distribute • Slow performance link opt’s • Bi-Directional Audio service packs • Delegated Administration • Package customized installs • Pass-through authentication • Biometric authentication • Centralized mgmt. console • Integrate with Network • Seamless windows • Object-based Delegated Admin Management consoles • Connection control • Multi-monitor support • CPU prioritization • Section 508 Compliance • Client time zone support Total “Net” Leverage • 1000+ servers in farm • FIPS/HIPAA Compliance • Application Save Position • NFuse Classic (across multiple Farms) • 1 -to-1 Shadowing • Enterprise-wide Licensing End-to-End Security • Support for multiple farms • 1 -to-M/M-to-1 shadowing • Performance Management • Support for NFuse Elite • Cross-server shadowing • Citrix Secure Gateway • Multilingual UI Support • Shadowing indicator • SSL/TLS 128 -bit encryption • USB/PDA Device Synchronization Ultimate Flexibility • Auto client printer detection • Support for digital certificates Pro Remoteclient Access • Non-Windows access • Universal print driver • Windows XP • Socks 4 & 5 proxy support Management Interfaces • 16 -bit audio • Auto client update • Web-enable • Smart card support • Support for direct asynch • Business recovery • Com port redirection client install 17 • Web-based © 2003 Citrix Systems, Inc. —All rights reserved. Citrix Company Confidential Unparalleled Manageability & Scale Plus Future Meta. Frame XP Feature and Platform Releases!

Citrix Meta. Frame Secure Access Manager • Secure, role-based access to centralized enterprise resources – Application layer access – security - consistency – Windows, Web, and Java • Brings the Internet, Extranet, and Intranet into a single place – Access center for personalized view – HTTP/S and ICA access to applications – Support mobile users inside and outside the enterprise – Easy deployment, management, and integration 18 Citrix Company Confidential © 2003 Citrix Systems, Inc. —All rights reserved.

Single Point of Access • Delivers the entire enterprise with a single point of access – Applications – Content – Resources 19 Citrix Company Confidential © 2003 Citrix Systems, Inc. —All rights reserved.

Citrix Meta. Frame Conferencing Manager Dynamic collaboration of applications – Builds atop Meta. Frame Presentation Server deployments – Anywhere, anytime application sharing – Easy, effective, secure 20 Citrix Company Confidential © 2003 Citrix Systems, Inc. —All rights reserved.

User Interface Meeting list shows all your meetings, both scheduled and instant – start or join any meeting Create an instant meeting Tabs allow different data views … Description - dial in information or other text Attachments – included in original meeting request Attendees – Those invited to selected meeting 21 Citrix Company Confidential © 2003 Citrix Systems, Inc. —All rights reserved.

The Meeting Room Auto-hide menu bar Switch between Full Screen and Window view Attendees Applications 22 Citrix Company Confidential © 2003 Citrix Systems, Inc. —All rights reserved.

Work area supports multiple applications … 23 Citrix Company Confidential © 2003 Citrix Systems, Inc. —All rights reserved.

Citrix Meta. Frame Password Manager Access to Any Application – Centrally manage and automate password-related events, including password generation & changes • Increases network security – Stricter password policies – More frequent and automated password changes – Increased complexity of passwords 24 Citrix Company Confidential Web • Reduces help desk costs Legacy – Enterprise Single Sign-On (SSO) for Windows, Web, proprietary, and host-based applications Windows • Simplifies end user computing © 2003 Citrix Systems, Inc. —All rights reserved.

Password Management Challenges 25 Citrix Company Confidential © 2003 Citrix Systems, Inc. —All rights reserved.

Password Manager Components Administration Console SSO Agent • Responds to login event • Web, Windows or Legacy applications • Application Configurations • Controls All Agent Settings • Agent First Time Use Settings • No Manual Scripting Required Bimini Config People Push user 1 Secrets 26 Citrix Company Confidential SSO Enterprise Application Configs SSO FTU Settings SSO Client Settings Directory or File share Sync © 2003 Citrix Systems, Inc. —All rights reserved.

Secure Gateway Review • Citrix has two separate SSL VPN solutions. – SG for MPS, ICA traffic only with Web Interface user interface (UI). – SG for MSAM, ICA and HTTP(S) traffic with Portal IU. 27 Citrix Company Confidential © 2003 Citrix Systems, Inc. —All rights reserved.

MPS Secure Gateway review • Secure Gateway for MPS is a SSL VPN technology which is bundled with MSP as a value-add. – Only supports ICA traffic. – Only supports MSP application deployment. – Web Interface is the default static user interface (UI) 28 Citrix Company Confidential © 2003 Citrix Systems, Inc. —All rights reserved.

MSAM Secure Gateway review • Secure Gateway for MSAM is a SSL VPN product which is a core component of MSAM. – Supports ICA, HTTP and HTTPS traffic. – Supports MSP and Web application as well as Web and native Content deployment. – A dynamic Portal is the default user interface (UI). – Internal Web resources with private IP addresses are available from the internet • SSL VPN development i. e. , additional protocol support etc… is exclusively focused on MSAM 29 Citrix Company Confidential © 2003 Citrix Systems, Inc. —All rights reserved.

Single DMZ, Meta. Frame only ICA Traffic only, With WI Internet Explorer Web Interface Meta. Frame PS Farm CSG. ACME. COM Gateway Service ICA : 443 : 1494 Internet HTTP to 127. 0. 0. 1 IIS WI : 80 STA XML : 80 HTTP(S) ICA 30 Citrix Company Confidential © 2003 Citrix Systems, Inc. —All rights reserved.

Single DMZ, SAM only ICA + HTTP Traffic, With Portal Note: The addition of HTTP traffic (Internal Web Servers) Internet Explorer Portal Internal Web servers Meta. Frame Secure Access Manager CSG. ACME. COM Gateway Service Gateway Client : 443 HTTP to 127. 0. 0. 1 Internet IIS Logon Agent HTTP(S) UDP 31 Citrix Company Confidential : 80 AS UDP 5500 RSA Secur. ID ACE Server (optional) © 2003 Citrix Systems, Inc. —All rights reserved.

Single DMZ, SAM and Meta. Frame ICA + HTTP Traffic, With Portal Note: Deploy MSP (ICA), Web (HTTP(S) content natively via Portal ICA-in-SSL Internet Explorer Portal Meta. Frame PS Farm CSG. ACME. COM ICA Gateway Service Gateway Client Internet Internal Web servers : 443 : 80 IIS Meta. Frame Secure Access Manager AS+STA WI HTTP(S) UDP ICA 32 Citrix Company Confidential Logon Agent UDP 5500 ACE (optional) © 2003 Citrix Systems, Inc. —All rights reserved.

Many different deployment scenarios • Single DMZ or Dual DMZ? • Using Meta. Frame? – Web Interface on the same machine, on a different machine in the DMZ or on the trusted network? – Using SSL to communicate with the STA? • Using Both? • Using MSAM? – With or without RSA? – Logon Agent on the same machine? – Allowing access to other internal web servers? – Using SSL to communicate with the Auth Service? – ICA applications fostered by SAM or WI? Or both? 33 Citrix Company Confidential © 2003 Citrix Systems, Inc. —All rights reserved.

Citrix Meta. Frame Access Suite • Server Family – – – Meta. Frame XP Feature Release 3 for Windows 2003 Meta. Frame XP Feature Release 3 for Windows 2000 Meta. Frame XP Feature Release 2 for Windows 2000 Meta. Frame XP Feature Release 1 Windows NT 4. 0 TSE Meta. Frame Feature Release 2 for Unix (Solaris, HP-UX, IBM-AIX) • Web Access Family – Web Interface 2. 0 on IIS 5 x & UNIXLinux w Apache & Tomcat – Secure Access Manager 2. 0 for Windows 2000 • Security Family – – Secure Gateway for Meta. Frame 2. 0 for Windows 2000 Secure Gateway for Meta. Frame 2. 0 for Windows 2003 Secure Gateway for Meta. Frame 1. 2 for Solaris 8 Secure Gateway for MSAM 2. 0 for Windows 2000 • Management Family – Citrix Meta. Frame Conferencing Manager 2. 0 – Citrix Meta. Frame Password Manager 2. 0 34 Citrix Company Confidential © 2003 Citrix Systems, Inc. —All rights reserved.

Meta. Frame Access Suite Benefits • Centralized applications and management reduce costs and complexity of IT – “Dashboard” to oversee quality and costs of application and information access – Accelerated new application deployment and access • Users focus on their jobs and not complexity of accessing the heterogeneous IT environment – Any resource from anywhere, anytime, using any device, over any network 35 Citrix Company Confidential © 2003 Citrix Systems, Inc. —All rights reserved.

Meta. Frame Access Suite Benefits • Secure, role-based access to Windows, Web and Java from a single point • Internet, Extranet, and Intranet in a single place • Single Sign-on to any application - Windows, Web, proprietary, and host-based applications • Anywhere - anytime secure application conferencing 36 Citrix Company Confidential © 2003 Citrix Systems, Inc. —All rights reserved.

Introducing Three Meta. Frame Access Suite Offerings 37 Citrix Meta. Frame Access Suite • For new Citrix customers Citrix Meta. Frame Access Suite Step-up • For existing Meta. Frame XP Presentation Server Customers Citrix Meta. Frame Access Suite Migration • For existing Meta. Frame 1. 8 customers Citrix Company Confidential • Build out your access infrastructure • Augment your existing application deployment and management solution • Evolve your existing application access solution © 2003 Citrix Systems, Inc. —All rights reserved.

Pricing How much does the Meta. Frame Access Suite cost and what does it include? Meta. Frame Access Suite Price per concurrent user license Designed for $599 New customers or customers who need to expand their solution Meta. Frame Access Suite, Stepup $299 Existing MPS XP customers Meta. Frame Access Suite Migration $399 Existing Meta. Frame 1. 8 customers Includes the following component products Meta. Frame XP Presentation Server, Enterprise Edition with Feature Release 3 Migration Meta. Frame Secure Access Manager 2. 0 with Service Pack 1 38 Citrix Company Confidential © 2003 Citrix Systems, Inc. —All rights reserved.

Break

Citrix Technology and Strategic Directions

Extending the On Demand Enterprise • Increased transparency between local & remote PCs • Performance improvements • Enhanced mobility • Multi-media content support • Additional user interfaces and clients 41 Citrix Company Confidential © 2003 Citrix Systems, Inc. —All rights reserved.

“RAVE” Technology • Streaming video and audio support on Meta. Frame Presentation Server – Dramatically improves audio and video stream playback – Improves bandwidth usage with multi-media content – Minimal degradation of performance even with multiple users • Result: a more transparent and seamless user experience with multi-media content 42 Citrix Company Confidential © 2003 Citrix Systems, Inc. —All rights reserved.

“JPEG Compression” Technology • Enhanced graphics compression – Significantly improves the performance of viewing graphical content through Meta. Frame – Improves performance of graphically intensive applications – Improves bandwidth usage • Result: faster more responsive experience with graphics intensive applications 43 Citrix Company Confidential © 2003 Citrix Systems, Inc. —All rights reserved.

“Follow-Me Roaming” Technology • Enhanced control and access to the users workspace – Automatically re-connects user to their applications – Allows sessions to be pulled to another device – Simplifies disconnect, logoff and re-connect • Result: users can easily and quickly move between access devices 44 Citrix Company Confidential © 2003 Citrix Systems, Inc. —All rights reserved.

Unification of Meta. Frame Access Suite Management • Uniformly manage the Suite • Informational dashboard and data providers • Common componentry • Unified licensing across all products • Integration with other management products & tools • Support for wider variety of authentication mechanisms 45 Citrix Company Confidential © 2003 Citrix Systems, Inc. —All rights reserved.

Citrix Management Interface (CMI) • Single point of management console for Meta. Frame Access Suite – Consistent “look and feel” for all products – Improved Integration and Access Management • Fully integrated access infrastructure • Result: easier for IT administrators to manage access, observe operations, ensure service 46 Citrix Company Confidential © 2003 Citrix Systems, Inc. —All rights reserved.

Security and Standards are Inherent • Common Criteria • FIPS-140 • Section 508 • Various European initiatives 47 Citrix Company Confidential Security Privacy Accessibility Quality Assurance • HIPAA • Common Criteria • ISO, Six Sigma, and SEI-CMM guidelines © 2003 Citrix Systems, Inc. —All rights reserved.

Citrix Long Term Focus… • Improved manageability, scalability, and reporting of on-demand enterprise services • Greater usage of web services to enhance usability and integration with other enterprise facilities • Increased user mobility via broader device support, reliable ICA traffic, state management • Enhanced secured access for B 2 E and B 2 B • Continued integration and transparency of heterogeneous platforms and services 48 Citrix Company Confidential © 2003 Citrix Systems, Inc. —All rights reserved.

Thank You!