Transcription

Technical white paperHP Reference Architecture fordeploying HP 3PAR File Personafor Citrix ShareFile EnterpriseOn-premise StorageZones with HP 3PAR StoreServ StorageTable of contentsExecutive summary . 2Introduction. 2Solution overview . 2Solution hardware components . 5HP 3PAR StoreServ Storage . 5HP ProLiant server . 6HP Networking switch . 7Solution software components . 8HP 3PAR File Persona . 8HP 3PAR StoreServ Management Console . 9Citrix ShareFile Enterprise . 10Customer-managed StorageZones with on-premise storage. 10Reference Architecture . 11Create a network File Share on HP 3PAR File Persona . 13Install and configure Citrix ShareFile StorageZones Controller . 16File Share continuity and encryption . 17Recommendations . 17Bill of materials . 18Summary. 18Terminology . 19For more information . 20

Technical white paper HP Reference Architecture for deploying HP 3PAR File Persona for Citrix ShareFile EnterpriseExecutive summaryTrends such as work shifting and bring your own device (BYOD) are putting more pressure on IT, which is struggling toreconcile these forces with the need to protect intellectual property and comply with regulatory requirements. A growingglobal workforce and the need to collaborate and share data with third parties, customers, and partners add to this chaosand complexity. Users have increasingly turned to unsecure, consumer-style cloud services for access to their data andfiles across all of their devices, as well as the ability to share those files with others. To help IT regain control overemployee file sharing, HP and Citrix have teamed together to offer an enterprise-class, IT-managed, secure file syncand sharing solution.Citrix ShareFile Enterprise, with an on-premise storage solution using HP 3PAR StoreServ Storage with HP 3PAR FilePersona, offers a unique file sync and sharing solution. This solution incorporates enterprise tier-1 storage at a midrangeprice to deliver a tightly integrated, truly converged solution for provisioning both block storage volumes and File Sharesfrom a single storage system. HP 3PAR File Persona provides continuously available File Shares, point-in-time File Storesnapshots for user-driven file recovery, support for third-party antivirus, backup and restore software, and disasterrecovery (DR) replication via separately licensed HP 3PAR Remote Copy software. Plus, HP 3PAR File Persona supportsData-At-Rest (DAR) Encryption as an optional additional measure to prevent unauthorized data access.This document details a file sync and sharing solution that combines the features of HP 3PAR File Persona withCitrix ShareFile Enterprise to deliver a scalable, highly available, enterprise-class, on-premise storage solution withsecure remote cloud access to file sync and sharing services.Target audienceThis white paper is intended for HP and Citrix partners and customers who seek a simplified framework for the deploymentand delivery of Citrix ShareFile Enterprise, with on-premise StorageZones using HP 3PAR StoreServ Storage. Readers of thiswhite paper should have a functional understanding of Citrix ShareFile Enterprise concepts and terminology.IntroductionHP 3PAR File Persona extends the spectrum of primary storage workloads natively addressed by HP 3PAR StoreServStorage from virtualization, databases, and applications via the Block Persona to also include client workloads such asenterprise file sync and sharing, home directory consolidation, and group or corporate shares via the File Persona.HP 3PAR File Persona is easily deployed with enterprise file sync and sharing solutions such as Citrix ShareFile Enterpriseand on-premise StorageZones. StorageZones enable IT to place data in the organization’s own data center to meet uniquedata sovereignty and compliancy requirements. On-premise StorageZones offer the flexibility of customer managementand giving IT the ability to control sensitive corporate data while meeting the mobility and collaboration needs of users.Advantages to deploying HP 3PAR StoreServ Storage with your enterprise file sync and sharing solution includethe following: File and block services can use a single group of thinly provisioned storage. Both file and block data use autonomic data management services. Leverages resilient mesh-active architecture. Leverages the advanced data services of HP 3PAR OS.Solution overviewThis white paper provides details and guidelines for deploying a Reference Architecture that supports enterprise file syncand sharing using Citrix ShareFile Enterprise and HP 3PAR StoreServ Storage, with HP 3PAR File Persona acting as theon-premise storage repository in a customer’s data center.Together, HP and Citrix offer a viable solution for customers who require remote cloud access and data sharing, whilemaintaining control of user’s data using on-premise storage. The StorageZones Controller provides access to a local,single-tenant storage repository, giving customers the security that their data is exclusive to the storage. HP 3PAR FilePersona provides a compliant SMB interface that is able to adapt to the customer’s current and future requirements.2

Technical white paper HP Reference Architecture for deploying HP 3PAR File Persona for Citrix ShareFile EnterpriseHP 3PAR File PersonaWith the HP 3PAR File Persona software, you can create a converged storage solution with block and file storage services.This unique solution delivers tightly integrated, converged storage for provisioning both block volumes for serverworkloads, and file and object shares for client workloads such as Citrix ShareFile Enterprise. Truly converged storagemanagement is provided by a single instance of the HP 3PAR StoreServ Management Console (SSMC) and scriptableHP 3PAR Command Line Interface (CLI). You must have network interface cards that support the File Persona softwareinstalled on the HP 3PAR StoreServ system to use the File Persona software.Enabling the HP 3PAR File Persona software on HP 3PAR StoreServ Storage offers many advantages:Solution highlights Single management interface for block and file provided through either the HP 3PAR SSMC or HP 3PAR OS CLI. HP 3PAR File Persona software supports a rich set of file protocols including Server Message Block (SMB) 3.0, 2.1, 2.0,and 1.0, and NFS v4.0 and v3.0 to support a broad range of client OSs. HP 3PAR File Persona software benefits from the inherited HP 3PAR StoreServ Storage resiliency. If an event requiringnode-failover occurs, such as a controller failure or HP 3PAR OS upgrade, file services will failover to the other controllernode in the node pair. Depending on the protocol, the failovers are transparent to the file service users. Block and file services can use a single group of thinly provisioned storage. HP 3PAR StoreServ Storage has sufficient resources to support block workloads alongside file workloads such asCitrix ShareFile Enterprise. There is room to grow the file services solution with support for file sizes up to 2 TB and a maximum aggregate filecapacity of up to 128 TB.As your environment grows and as you continue to evolve your infrastructure, a truly converged primary storage platformwill allow you to address a broad spectrum of workloads, as illustrated in figure 1.Figure 1. Block and file workload coexisting on a single storage platform3

Technical white paper HP Reference Architecture for deploying HP 3PAR File Persona for Citrix ShareFile EnterpriseCitrix ShareFile EnterpriseCitrix ShareFile Enterprise is a secure file sync and sharing service that meets the mobility and collaboration needs of userswhile meeting the data security requirements of the enterprise. Users are able to securely access their data and data sharedby others from any PC, Mac, or mobile device. Citrix ShareFile enables bring-your-own-device (BYOD) accessibility by givingusers seamless, secure access to synced files and folders on their PC or on the go. With support for popular mobiledevices—and easy-to-use interfaces with dynamic access options—users can leverage the devices they are mostcomfortable with, avoiding the learning curve of new tools and devices.With Citrix ShareFile, you can choose where your data is stored—in the cloud, in your data center, or a combination of both.Deploying an on-premise solution, Citrix ShareFile allows a company to maintain control of its assets by having theShareFile storage located in their company-controlled data center. This provides the flexibility to store enterprise data inoptimal locations, which meet corporate data policies and unique compliance requirements.HP 3PAR File Persona software, with its rich set of data services, is an ideal enterprise-class platform for hosting CitrixShareFile user data. The HP 3PAR File Persona software and Citrix ShareFile solution allows companies to upload and sharelarge business files securely and easily, enabling enterprise-class sharing and collaboration to be integrated with mostbusiness workflows, such as Microsoft Outlook. Files of up to 100 GB may be securely uploaded using AES encryption.Table 1 provides details on the key components of the Reference Architecture.Table 1. Key components of solution and descriptionComponentDescriptionShareFile ControlPlaneHosted in Citrix data centers and managed by Citrix as a service, the Control Plane performs functions suchas user authentication, access control, reporting, and brokering.You need an account within the ShareFile system to access a StorageZones Controller server.A subdomain of ShareFile.com (for example, mycompany.ShareFile.com) is assigned to your account.This site handles all administrative functions and user account activity.A database within the Citrix data center maintains the file or folder namespace created by each user.StorageZonesControllerThe StorageZones Controller software is installed on Windows servers located in your data center.A unique domain name and SSL certificate are required for each deployed StorageZones Controller.Multiple StorageZones Controllers may be deployed for a given account.HP 3PAR StoreServStorageThe primary storage for user files is one or more HP 3PAR File Persona File Shares. These File Shares areconnected to the StorageZones Controllers.Public InternetAll client applications access the Citrix ShareFile.com site and associated StorageZones Controller acrossthe public Internet.Client applicationsCitrix provides multiple client applications for users to access their ShareFile accounts. The client devicecan request access to the follow-me data service through a mobile app, native desktop client, virtualdesktop, Web, or mobile browser.How does it work?When a user logs into Citrix ShareFile, they connect to a subdomain hosted on either ShareFile.com or ShareFile.eu in aCitrix-managed data center. The servers provide the Web and API services for the ShareFile user. Each ShareFile account(subdomain) has its own unique URL that is generally in the format of company.ShareFile.com.Figure 2 illustrates the client flow for accessing the file sync and sharing solution.1.The ShareFile user requests a file from ShareFile.com. Citrix ShareFile supports a variety of clients and devices.2.A prepare message is created by the ShareFile.com Web application in the SaaS application tier, hosted inCitrix-managed data centers. The message is then sent to the StorageZones Controller in the customer’sdata center requesting the file. The location of the file is stored in the SaaS application tier database.A hash-based message authentication code (HMAC) based on the Shared Key used to establish a trust relationbetween the SaaS application tier and StorageZones, is sent as part of the prepare message and is validated bythe StorageZones Controller.Once validated, the StorageZones Controller generates a unique one-time-use download token.The ShareFile Web application provides the download link to the client with the unique download token.To start the actual download, the client connects to the StorageZones.The download token (part of the download request from the client) is validated.If validation is successful, the file will be retrieved from storage.The StorageZones Controller server will send the file to the client.3.4.5.6.7.8.9.4

Technical white paper HP Reference Architecture for deploying HP 3PAR File Persona for Citrix ShareFile EnterpriseFigure 2. Data flow for file sync and sharing solution using customer-managed on-premise storageSolution hardware componentsThe Reference Architecture detailed in this white paper includes the following major hardware components: HP 3PAR StoreServ 7400c Storage—repository for customer’s shared data HP ProLiant DL380 Gen9 Server—server platform for Citrix ShareFile StorageZones Controller software HP 5920 Switch—network connectivity between HP storage and servers in the customer’s data centerHP 3PAR StoreServ StorageThe HP 3PAR StoreServ 7400c Storage shown in figures 3 and 4 offers enterprise tier-1 storage at a midrange price.Spend less time managing storage, get more features for less money, and do it all without sacrificing performance orfuture scalability. HP 3PAR StoreServ 7400c Storage provides high performance and guarantees to double your virtualmachine density.1 With hardware-assisted thin storage, it is the only platform that guarantees a 50 percent reduction incapacity requirements.2 HP 3PAR StoreServ Storage is also the first product family with a common architecture, capable of6-Nines high availability that meets midsize and large business needs.3 HP 3PAR StoreServ Storage spans to the largestglobal enterprise, giving you access to the same features as the world’s largest service providers.4 You can start small andgrow without painful upgrades down the road.Key features Grow with freedom in any direction—HP 3PAR Operating System delivers a tightly integrated, converged solution forprovisioning block storage volumes, as well as File Shares from a single capacity store. Scalable storage—HP 3PAR StoreServ Storage provides affordable entry pricing and unique, non-disruptive scalabilityto four nodes.1, 2, 3, 4HP 3PAR StoreServ 7000 Storage QuickSpecs, December 20145

Technical white paper HP Reference Architecture for deploying HP 3PAR File Persona for Citrix ShareFile Enterprise High availability—With the “HP 3PAR Get 6-Nines Guarantee,” HP ensures 99.9999 percent data availability withall HP 3PAR StoreServ 7400c Storage with four nodes. 5 It gives you the peace of mind to expand deployment ofmission-critical applications to midrange storage. Effortless management—HP 3PAR StoreServ Management Console provides a modern look and consistent feel forall HP 3PAR StoreServ Storage, offering the ability to manage block, file, and object access from a single interface formaximum agility.For more product information and configuration options, visit hp.com/go/3par.Figure 3. HP 3PAR StoreServ 7400c StorageFigure 4. HP M6720 3.5-inch 4U SAS Drive Enclosure with 24 SAS NL drivesHP ProLiant serverThe HP ProLiant DL380 Gen9 Server shown in figure 5 is purpose-built for flexibility, efficiency, and manageability. As theworld’s best-selling server,6 with Gen9, the DL380 just got better. Designed to adapt to the needs of any environment,from large enterprise to remote office or branch office, offering enhanced reliability, serviceability, and continuousavailability, backed by a comprehensive warranty.With the HP ProLiant DL380 Gen9 Server, you can deploy a single platform to handle a wide variety of enterprise workloadssuch as a file sync and sharing solution using Citrix ShareFile Enterprise.Key features Future-proof design with flexible options—Choose the features or functions you need now; add more as necessary asyour business needs grow; the modular chassis, networking, and controller designs allow for easy upgrades. Pay for whatyou need, when you need it. Industry-leading performance and energy efficiency—For delivering faster business results and quicker returns onyour investment; up to 70 percent performance from the Intel Xeon E5-2620 v3 Haswell processors and powersavings features, such as, ENERGY STAR -rated systems and 94 percent efficient HP Flexible Slot Power Supplies todrive down energy costs. 7 Agile infrastructure management—For accelerating IT service delivery; streamline management with HP OneView—the revolutionary software-defined management platform that delivers automation simplicity across servers, storage,and networking.For more product information and configuration options, visit hp.com/go/proliant.HP 3PAR Get 6-Nines Guarantee Program solution brief, July 2014“Q114 IDC WW Quarterly Server Tracker,” May 30, 20147 t-detail.html?oid 7271241#!tab features566

Technical white paper HP Reference Architecture for deploying HP 3PAR File Persona for Citrix ShareFile EnterpriseFigure 5. HP ProLiant DL380 Gen9 ServerHP Networking switchThe HP 5920 Switch Series shown in figure 6 is made up of high-density 10GbE, ultra-deep packet buffering, top-of-rack(ToR) switches. These switches are part of the HP FlexFabric solution module—within the HP FlexNetwork—and are ideallysuited f