I am fresh back from the biggest ever VMworld Europe, buoyed by the numerous announcements and developments in their end-user capabilities. On the back of our strengthening strategic partnership I thought it was time to address that age-old question; which is best Citrix or VMware?
It’s not easy being a consultant. It’s even harder when you don’t work for a vendor and so aren’t invested in a specific technology stack. Yes, I get it, there are worse things in life, but all things are relative. For me, nothing represents that better than organisations asking whether they should choose VMware or Citrix? The response ‘it depends’ is often met with exasperation, but it’s key to everything we do, by focusing on the value to a business and the requirements they are trying to meet.
Back in 2014, VMware bought AirWatch for $1.54 billion; a staggering fifteen times it’s reputed worth. We had already seen the explosion of mobile devices into organisations and the realisation of how much more productive they could make people, but it was also evident that managing mobile devices was a different proposition to managing static PCs.
Pretty soon that was looking like a smart move. However, roll forward to 2018 and the benefits of Mobile Device Management are being exploited across the wider estate. Making the purchase look like a fabulous move. The development of Unified Endpoint Management (UEM) has allowed VMware to talk not just about virtual desktops, not just about mobile devices but the whole end-user estate. With this the focus has shifted just from competing with Citrix to move directly with Microsoft. With virtual desktops constant at around 10% for most customers the bigger opportunity remains the physical world hence the development of Workspace ONE. The prize now is looking beyond the Microsoft ecosystem at how the workplace is becoming more disparate, driven by consumer/colleague choice. This strategic, holistic, vision is now more often what drives solution choice.
In August 2017, VMware bought Apteligent, nine months later they bought E8 Security and delivered Workspace ONE Intelligence to improve user experience, optimise resources and strengthen security and compliance. In May of this year, they announced their strategic partnership with Okta which increased their capabilities to deliver a compelling identity story. I said above that the focus has shifted from Citrix to Microsoft, with these acquisitions and the capabilities they bring, in truth VMware is battling against their partnership.
The decision to remain on a certain virtual platform should be considered alongside how devices will be managed, how identity will be handled, what cloud investment strategy has been decided, which endpoint security requirements you have. Most organisations have existing investments in technology that come up for renewal at different times so changes need to be modular and fit an end vision. They must interact and exist alongside other products until the time is right to retire them. So where do you start? In Workspace ONE I see four opportunities.
Device diversity – organisations are increasingly looking beyond Microsoft Windows to support greater user choice. The drive from Apple and Google into Enterprise organisations is, so far, better supported and has more focus from VMware
Consumerisation of IT – as the consumer world now leads the Enterprise world there is an expectation of a certain user experience and ease of use. Workspace ONE delivers a consistent consumer-like experience across multiple OS platforms and form-factors.
Existing AirWatch investment – where mobile devices are already being managed via AirWatch the ability to extend that management to the primary device estate through a ‘single pane of glass’ can make a strong case for retaining and strategically developing investment in VMware.
Existing virtual desktop and app investment – where VMware Horizon has been deployed the built-in integration into Workspace ONE and potential licence benefits could make the case for deploying the wider portfolio of products. Publishing applications through the Workspace ONE app can be a key driver to greater end-point diversity.
VMware can co-exist with traditional management systems to manage a wide range of devices and form factors. Using analytics, they now have insight into the user experience, with their open security platform they can take advantage off best of breed vendors and with their partnership with Okta they have an identity solution to integrate any application strategy safely and securely. That gives them the capability to offer a direct comparison to Microsoft’s Enterprise Mobility and Security suite.
Competition provides benefits for the user and drives vendors to be innovative. If you believe that your future desktop strategy extends beyond the Microsoft world, then Workspace ONE is something you need to consider. Let’s have the conversation, just don’t expect a simple answer.
Now landed back in the UK after yet another very impressive VMworld event (3.30am start for a 5.50 flight – ouch!). It has been a whirlwind few days of executive meetings (a number of really fundamental catch ups), extremely concise and well-formed session content from the VMware team (congrats to all) and potentially our best customer event yet (every year we invite a number of our key customers to spend time with us at VMworld – with nearly 200 people at the Computacenter event I think you can say it was a success).
This VMworld may prove to be a watershed event. VMware reinforced the perspective a software defined future is no longer optional but instead the “new normal” – now. The business agility and operational flexibility essential for ongoing success through the current ever changing digital age is forcing enterprise IT environments to “act like code” to deliver services, consistently at warp speed. Common to other VMworld events, the VMware team demonstrated the technology is ready (and it has been for quite a while), but human inertia continues to stall the growth of the software defined enterprise as the very last few points of concern are digested and overcome.
NSX (the VMware advanced software defined networking layer) is moving from the background to a centre stage role in the VMware enterprise transformation strategy. As the digital data transport layer that simplifies and optimises traditional networking, delivers a policy based pathway from private, through hybrid to public cloud and back plus enhances security along the way – NSX may offer VMware one of the real keys to the enterprise kingdom. But this event wasn’t all about networking, major enhancements to core VSphere to make it enterprise robust but cloud ready arrived on mass and the additional light shone on the devops world with greater support for containers, workflow and API driven operations ensured a welcome and steady stream of impressive announcements.
The arrival of such a blur of product updates and developments are timely. I noticed a change in attitude and tone with the mass of attendees at this VMworld cramming into the rooms of the “how” sessions no longer deliberating over “why and when” – I think they are now ready!!
Does this sign post a VMware only world to realise the enterprise software defined IT dream, definitely not with the vendor village of eco system partners and past and present competitors all offering valuable services and solutions to enable effective completion of the software defined jigsaw puzzle. But it is clear VMware are leading the charge as they have been for many years and present a compelling end to end, top to toe story of software led transformational business change.
I think the needle has now shifted and the brave new world of enterprise IT still running on high performance hardware, but defined dynamically by software is now upon us and will deliver the hybrid cloud digital super highway that will propel businesses forward both now and into the future. Job well done VMware, the stage is now set for partner, customer and industry cast members to act.
Until next time
Chief Technologist Computacenter UK. Networking, Security and collaboration.
Software defined networking (SDN) continues to be a major customer discussion within both the specialist networking and enterprise datacenter arenas. After bubbling under in the mindshare league well below cloud, virtualisation and mobility for quite a while SDN is starting to move up the ranking. However this is not without a fair degree of murmured discontent.
Enterprises, whilst digesting the technical concepts behind SDN are struggling to understand the most effective SDN solution design approach and focus in on the business problem / outcome resolved by SDN. At the highest most strategic level, there are numerous benefits that can include operation efficiencies, network agility and simplicity to name a few. But however compelling they all are, they currently do not seem compelling enough (unless a convenient infrastructure upgrade requirement is often factored into the SDN discussion). This could be the result of looking at something so hard that the some of the more obvious benefits are overlooked and in the case of SDN one said benefits is certainly security.
Networking in software (prior to SDN) had already found its home in the middle of a hypervisor as part of a virtualised compute environment, with the result some degree of understanding of the use of software in enterprise computing to realise networking outcomes is already known. But with the unrelenting growth of server virtualisation beneath a hypervisor with the resulting change to network traffic flows (much of it remaining within the hypervisor or physical host) a hidden challenge became the norm – securing virtualised workloads. The drive by many towards a virtualised enterprise changes decades of traditional design norms of physical perimeter security device placement with the requirement to reproduce a revised ideal for the virtualised workload world.
Enter software defined security (SDS) included within or as a by-product of an SDN strategy. The ability to micro segment virtual workloads using internal virtualised firewalls and controls in software with the reduced need for traffic to flow out of the virtual environment and back to determine the security state is surely a “killer outcome mobilised by SDS or SDN. And before you state it, a secure environment in a virtualised context can be realised today without the use of SDN and software defined security implementation, but SDN makes it much easier, tightly couples it with management and automation frameworks with the result reduced time to value. There are numerous software defined security approaches from standard functionality within specialist SDN overlay networks through to dedicated SDS (software defined security) solutions from specialist vendors with next generation security at the heart. And with enterprises wrestling with the urgent need to secure physical, virtual, hybrid and cloud environments working together as one, a new approach to solving this KEY enterprise IT infrastructure security challenge is surely required.
Software defined security alone isn’t the answer, SDN in isolation isn’t the answer but they are both serious and viable considerations to deliver security outcomes today aligned with problems of tomorrow. To that end, software defined security (SDS) may well be the “killer outcome” that kick starts the SDN change.
Until next time.