To deploy the Unified Access Gateway appliance, ensure that your system meets the hardware and software requirements.

VMware Product Versions Supported

You must use specific versions of VMware products with specific versions of Unified Access Gateway. Refer to the product release notes for the latest information about compatibility, and refer to the VMware Product Interoperability Matrix at http://www.vmware.com/resources/compatibility/sim/interop_matrix.php.

Hardware Requirements for ESXi Server

The Unified Access Gateway appliance must be deployed on a version of VMware vSphere that is the same as the version supported for the VMware products and versions respectively.

If you plan to use the vSphere Web client, verify that the client integration plug-in is installed. For more information, see the vSphere documentation. If you do not install this plug-in before you start the deployment wizard, the wizard prompts you to install the plug-in. This requires that you close the browser and exit the wizard.

참고:

Configure the clock (UTC) on the Unified Access Gateway appliance so that the appliance has the correct time. For example, open a console window on the Unified Access Gateway virtual machine and use arrow buttons to select the correct time zone. Also verify that the ESXi host time is synchronized with the NTP server and verify that VMware Tools, which is running in the appliance virtual machine, synchronizes the time on the virtual machine with the time on the ESXi host.

Virtual Appliance Requirements

The OVF package for the Unified Access Gateway appliance automatically selects the virtual machine configuration that the Unified Access Gateway requires. Although you can change these settings, VMware recommends that you not change the CPU, memory, or disk space to smaller values than the default OVF settings.

  • CPU minimum requirement is 2000 MHz

  • Minimum memory of 4GB

Ensure that the data store you use for the appliance has enough free disk space and meets other system requirements.

  • Virtual appliance download size is 1.8 GB

  • Thin-provisioned disk minimum requirement is 2.6 GB

  • Thick-provisioned disk minimum requirement is 20 GB

The following information is required to deploy the virtual appliance.

  • Static IP address (recommended)

  • IP address of the DNS server

  • Password for the root user

  • Password for the admin user

  • URL of the server instance of the load balancer that the Unified Access Gateway appliance points to

Unified Access Gateway Sizing Options

  • 표준: 이 구성은 연결 서버 용량에 맞게 지정된 최대 2000개의 Horizon 연결을 지원하는 Horizon 배포에 권장됩니다. 또한 최대 10,000개 동시 연결이 있는 Workspace ONE UEM 배포(모바일 사용 사례)에도 권장됩니다.

  • 대형: 이 구성은 Unified Access Gateway가 10,000개가 넘는 동시 연결을 지원해야 하는 Workspace ONE UEM 배포에 권장됩니다. 이 크기를 사용하면 Content Gateway, 애플리케이션별 터널 및 프록시, 역방향 프록시에서 동일한 Unified Access Gateway 장치를 사용할 수 있습니다.

    참고:

    표준 및 대규모 배포의 VM 옵션:

    • 표준 - 2코어 및 4GB RAM

    • 대규모 - 4코어 및 16GB RAM

Browser Versions Supported

Supported browsers for launching the Admin UI are Chrome, Firefox, and Internet Explorer. Please use the most current version of the browser.

Hardware Requirements When Using Windows Hyper-V Server

When you use Unified Access Gateway for an VMware AirWatch Per-App Tunnel deployment, you can install the Unified Access Gateway appliance on a Microsoft Hyper-V server.

Supported Microsoft servers are Windows Server 2012 R2 and Windows Server 2016.

Networking Configuration Requirements

You can use one, two, or three network interfaces and Unified Access Gateway requires a separate static IP address for each. Many DMZ implementations use separated networks to secure the different traffic types. Configure Unified Access Gateway according to the network design of the DMZ in which it is deployed.

  • One network interface is appropriate for POCs (proof of concept) or testing. With one NIC, external, internal, and management traffic is all on the same subnet.

  • With two network interfaces, external traffic is on one subnet, and internal and management traffic are on another subnet.

  • Using three network interfaces is the most secure option. With a third NIC, external, internal, and management traffic all have their own subnets.

Log Retention Requirements

The log files are configured by default to use a certain amount of space which is smaller than the total disk size in the aggregate. The logs for Unified Access Gateway are rotated by default. You must use syslog to preserve these log entries. See Collecting Logs from the Unified Access Gateway Appliance.