1.2.4 Gateways, Brokers, and Virtualization Agents

Gateways

Serve as the first line of defense, acting as a reverse proxy and single entry point for all incoming client connections. They handle requests from clients and forward them to the appropriate broker. Gateways also provide security features such as SSL/TLS encryption and authentication, ensuring that only authorized users can access the platform.

Brokers

Manage connections between users and end resources based on their needs and permissions. Brokers also perform load balancing, distributing connections across multiple servers to optimize performance and ensure high availability.

The Primary Broker manages user authentication and authorization, handles the virtualization process, and ensures availability of remote resources through workload balancing. In advanced configurations integrates with Identity Providers, enforces role-based permissions, and manages session handling, directing users to appropriate resources based on their credentials and configurations.

When implemented, the Secondary Broker offloads the workload of the Primary Broker, optimizes resource distribution, and maintains constant communication with the Gateway.

Virtualization Agents

Are software components installed on the servers hosting the applications and desktops. They facilitate the communication between the Broker and the virtualized resources, enabling it to manage and control the applications and desktops.