Microsoft App-V

Last updated March 28, 2023

Microsoft Application Virtualization logo

Microsoft Application Virtualization (also known as App-V;^[1] formerly Softricity SoftGrid)^[2] is an application virtualization and application streaming solution from Microsoft. It was originally developed by Softricity, a company based in Boston, Massachusetts, acquired by Microsoft on July 17, 2006.^[3] App-V represents Microsoft's entry to the application virtualization market, alongside their other virtualization technologies such as Hyper-V, Microsoft User Environment Virtualization (UE-V),^[4] Remote Desktop Services, and System Center Virtual Machine Manager.^[5]

Overview

App-V allows applications to be deployed ("streamed") in real-time to any client from a virtual application server. It removes the need for traditional local installation of the applications, although a standalone deployment method is also supported. With a streaming-based implementation, the App-V client needs to be installed on the client machines and application data that is stored on the virtual application server is installed (streamed) to the client cache on demand when it is first used, or pre-installed in a local cache. The App-V stack sandboxes the execution environment so that an application does not make changes directly to the underlying operating system's file system and/or Windows Registry, but rather is contained in an application-specific "bubble". App-V applications are also sandboxed from each other, so that different versions of the same application can be run under App-V concurrently and so that mutually exclusive applications can co-exist on the same system. Nevertheless the separation is not a security boundary.^[6]

App-V thus allows centralized installation and management of deployed applications. It supports policy based access control; administrators can define and restrict access to the applications by certain users, or on certain computers, by defining policies governing the usage. App-V also features a tracking interface to track the usage of the virtualized application. Servers may be implemented in highly available configurations when desired.

The App-V client presents the user with a neat, locally installed application experience for virtualized applications. Access to start the virtualized application appears to be identical to the locally install application, as extensions for the application are integrated into the user's desktop shell by the App-V client. When two or more virtual applications have a dependency on each other, the individual virtualized applications may also be configured to run together in a single isolated bubble.

Microsoft App-V is an additional component requiring licensing for use. Licensing is user-based and is either acquired by licensing Microsoft Desktop Optimization Pack (MDOP) for use on client operating systems, or as part of the Microsoft Remote Desktop Server Client Access License for use on Remote Desktop Servers. MDOP is a suite of technologies available as a subscription for Software Assurance customers. There also exists a licensing model that exists for hosting (cloud services) providers.

Major versions and variants

Microsoft released Version 5 of App-V in late November 2012, which is a third generation major redesign of the entire platform. Version 5 modernized the product, replacing components designed for use originally against Windows NT and Windows 2000 some 11 years earlier. The redesign also allowed for support of newer operating system features and improvements to virtualization support.

Version 4.x of the product is still in widespread use and is currently in active support. Microsoft extended the version 4 based support for up to Windows 8.1 and Server 2012 R2 client operating systems; however, some of the newer operating system features are not available for virtualized applications using App-V 4.x. The Microsoft standard end of support date for App-V 4.x was July 2015.^[7]

Versions 3.x and 2.x are not known to be in production use any more; support for these versions ended with the acquisition of Softricity by Microsoft. Versions 2.x through 4.x represent the second generation application virtualization product.

There was no 1.x version of the product. Prior to the release of SoftGrid 2.0, Softricity was known as SoftwareWow!. SoftwareWow! was an early cloud based service provider with an application store that streamed applications (primarily games) to consumers. The service used an in-house first generation product to provide Software As A Service (SaaS). Although little online information exists about the company today,^[8] this product provided streaming services with very limited virtualization support.

An offshoot of App-V was released by Microsoft under the name Microsoft Server Application Virtualization (“App-V for Servers”).^[9] This platform, which supports virtualization redirection but without isolation, is aimed at delivering virtualized server loads that would not have intra-application conflicts. The product is available as part of System Center Virtual Machine Manager, and is typically used to spin up new instances of servers on a demand-driven basis.

Architecture

Microsoft offers three options for the deployment of virtual applications, which affects the architectural components used:

A set of servers dedicated to App-V.
System Center Configuration Manager integration.
"Stand-alone" mode wherein the application may be delivered via other means.

The implementation of these three deployment options are different when version 5.x or 4.x of App-V is used. Each are described separately.

Architecture in versions 5.x

The 5.x based architecture has three major options that may be used. All three of these options use a few common components:

Microsoft Application Virtualization 5.x Sequencer, which is used to package a customized application for virtualized delivery.
Microsoft Application Virtualization 5.x Client, which is used at the operating system used to run the virtual application. Two forms of the client exist, one for desktop operating systems (such as Windows 7 with Service Pack 1 and Windows 8), and one for server operating systems configured for use as Remote Desktop Session Host servers.
Microsoft Application Virtualization Report Server, an optional component that can gather usage information (called metering) of the virtualized applications.
Microsoft Application Virtualization Client Console, an optional component that can be delivered to client systems as a virtual application. Typically, the console is not required for end-users, however deploying the console application provides the user with additional control over the virtual applications that have been previously authorized and delivered.

The remainder of the 5.x architecture is dependent on the deployment option used.

Full App-V 5.x Server option

The Full App-V 5.x Server composed of the following additional components:

Microsoft Application Virtualization 5.x Management Server, used to define applications and connection groups and assign them to Active Directory Security Groups containing lists of users or computers authorized to use the application. This server also distributes a summary of this information to multiple Publishing Servers. The Management Server is implemented as Web Service that stores configuration information in a back-end database. The Web Service may be accessed using a Silverlight-enabled web browser or PowerShell.
Microsoft Application Virtualization Publishing Server, used to authenticate users and computers and deliver appropriate virtual application metadata for publishing to the client.
Package Store, a simple file share that will be used by the clients to stream virtual applications from. In some cases, the Package Store may be fronted by a web server.

Configuration Manager integration option

The Configuration Manager composed of the following components:

Microsoft System Center Configuration Manager Site Server, used to define operating images, traditional application packages for installation, virtual applications, and other deployment tasks. These items may also be assigned to collections of users and computers, along with requirements and dependencies. This information is stored in a database and delivered, via a Distribution Point, to client machines.
Microsoft System Center Distribution Point, used to cache content for deployment for a highly scalable solution.
Microsoft System Center Client Agent, used to pull deployment metadata and content from the Distribution Point, and implement a variety of client component actions. From an App-V perspective, this component delivers the virtual application to the App-V Client.

App-V 5 requires the use of System Center Configuration Manager 2012, and above, for full support of App-V features. Deployment by older versions, or other electronic delivery systems, are also possible by using the virtual msi method of deployment.

Standalone mode

The App-V 5.x clients contains a PowerShell API that is ultimately used by both of the server modes above. It is sometimes desirable to use this API directly at the client, either manually or using additional tooling developed by third parties.

Architecture in versions 2.x through 4.x

The 4.x based architecture has three major options that may be used as well. All three of these options use a couple of common components:

Microsoft Application Virtualization 4.x Sequencer, which is used to package a customized application for virtualized delivery.
Microsoft Application Virtualization 4.x Client, which is used at the operating system used to run the virtual application. Four forms of the client exist, combined in sets that support either x86 or x64 operating systems. One set for desktop operating systems (such as Windows XP and above), and the other set for server operating systems configured for use as Remote Desktop Session Host servers.

Dedicated App-V management server

The App-V 4.x system architecture is composed of the following components:

Microsoft Systems Center Virtual Application Management Server, which is used to define applications and assign them to Active Directory Users, or Security Groups containing lists of users, authorized to use the application. The server also performs runtime authentication against authorized lists and records application usage (metering) information in a database for reporting.
Microsoft Systems Center Virtual Application Management Service, which is a .NET remoting web service, manages client requests for applications. This server works in conjunction with the Management Server to provide authorized application metadata for publishing, verification of authorized use, and reporting data. The server also handles streaming operations of the virtualized packages using an extension of the RTSP protocol.
App-V Management Console, the management tool to set up, administer and manage App-V servers. It can be used to define policies that govern the usage of the applications. It can also be used to create, manage, update and replicate virtualized application packages.

Shared System Center Configuration Manager

In 2009 Microsoft offered a new way to implement App-V with enhancements to System Center Configuration Manager. System Center Configuration Manager Architecture consists of the following components:

System Center Configuration Manager Site Server, serving as the primary repository for holding system images, application packages created using traditional installers, and virtual applications.
System Center Configuration Manager Distribution Server, used to cache and distribute the software on a more local level.

App-V 4.x has direct integrations with Configuration Manager 2007 SP1 through 2012 R2.

"Stand-alone" mode

The App-V clients may also be used in a "stand-alone mode"^[10] without either of the server infrastructures previously described. In this case, the sequenced packages are delivered using an external technique, such as an Electronic Software Delivery system or manual deployment.

Operation

Aside from the operations associated with the deployment operations, App-V Application Virtualization mainly comprises two components –the App-V Sequencer and the App-V Client.

The App-V sequencer is the component which re-packages an application for virtualization and streaming. It analyzes the application for the resources that it requires, supports customization of the applications, and from this creates a package containing the executable components, data files, and registry settings required by the application. The package format for the 4.x and 5.x versions are quite different:

The 5.x product uses an App-V format that is based on standard compression formats with additional features. Internally, much of the metadata formatting is borrowed from AppX.
The App-V 4.x versions produce packages using the SFT format,^[11] along with additional files based on a modified version^[12] of the Open Software Description (OSD) specification originally proposed to the WC3 in 1997 by Microsoft and Marimba.^[13]

The sequencer monitors the application installation, configuration, and runtime use of file and registry resources to determine package contents and configuration. It abstracts machine and user specific information to improve portability of the application components, allowing most applications to be run by different users, on different hardware, and even on different operating systems in some cases. The package is also configured for streaming operations, where portions of files may be delivered on an as-needed basis to clients. Guidelines for sequencing applications are different for the 4.x^[14] and 5.x^[15] versions.

The App-V client receives virtual application package definitions in several ways. When configured to receive from a Full App-V Infrastructure Server, this occurs automatically on logon, or a timer, and is initiated by the App-V Client. It also may be sent instructions via a client API, which is used by System Center deployments, the virtual msi, and stand-alone methods. The App-V 5.x client API is PowerShell based, while the 4.x client uses a proprietary sftmime interface.

Upon receiving the package, the client will download appropriate metadata, and possibly (dependent on both package and client configurations) some or all of the package components. The client is designed to utilize a streaming file system that operates much like local file paging activity. This allows for starting the application without all of the file(s) present in the cache locally. When the application requires a file portion not present, an operation called a stream-fault is performed that retrieves the needed file portion. The streamed package contents are cached by the client in memory for the duration of the application session, and may be retained in a local disk cache for future use.

User settings are stored in the local system itself using redirection to ensure that the cached copy of the application is not changed. In some cases, this allows for the deployment of applications that are not multi-user aware to be used on Remote Desktop Shared Host systems.

Capabilities specific to version 5.x

Version 5.x, in addition to being a redesign, added a number capabilities not previously available in the 4.x version. 5.0 Service Pack 2 added to these. They include:

Support for additional integrations. Applications have many ways to provide integration to the operating system and user desktop shell. Previously, only application shortcuts, file type associations, and COM integrations were available for providing the user a native-like experience. Version 5.x, especially with Service Pack 2 and beyond, significantly expanded the types of integrations, called Application Extensions in App-V. In addition to improved Shortcut support, Protocol Handlers, Application Capabilities, Software Clients, App Paths, and a variety of shell extensions, browser helper objects, and Active-X integrations were added. Many of these extensions help overcome the objections to virtualizing complicated applications such as Microsoft Office and plug-ins to Office.
Application Size. The 4GB package size limitation is gone. No documented limit exists for App-v 5.x packages.
Improved Scripting. Dependent components that cannot be virtualized may now be installed locally by the App-V client when needed using the new scripting interface, even when the logged in user does not have administrative privileges to install software. This includes dependent device drivers.
Connection Groups: Used when multiple packages need to work together in a single virtual application environment, this replaces the Dynamic Suite Composition added to App-V 4.5. The primary benefit of this redesign is that the Connection Groups are now managed objects at the App-V or Configuration Manager level, rather than hidden modifications made by an administrator.
RunVirtual: Sometimes virtual applications are started using locally installed components, such as a local web browser using virtualized plug-ins. Previously, virtualizing these applications caused issues for users that already created their own shortcuts to the local component. Using RunVirtual, the administrator can ensure that any launch of the local component will be virtualized.

Limitations of version 4.x

Microsoft Office plug-ins: Although one can sequence Microsoft Office plug-ins, it is not advised to sequence them due to many technical & usage issues. For example, in a situation where there are more than two plug-ins used by a user, if they are sequenced separately, then the user does not have control over which plug-in sequence starts when he opens a document. The only work around to resolve the issue is by creating a single suite or dynamic suite of all the plug-ins.
Application size: If the maximum client cache size is set to at least 4 GB (The max can be 64 GB), then the maximum size of application (sft file) which can be streamed on that machine is 4 GB. All applications that have an installed footprint greater than or equal to the max client size, set by the client, should not be sequenced. The maximum application size Softgrid can handle is 4GB, due to the use of the FAT32 file-system.^[16]
Device driver: App-V presently does not support sequencing of kernel-mode device drivers; thus any application that installs a device driver cannot be sequenced. The only exception to this is when the device driver can be pre-installed locally; in this case, the application is sequenced without the device driver.
Shortcuts: Applications should have minimum of one shortcut. If no shortcuts are present, then the application should be sequenced in a suite along with the application that needs it. Internet Explorer plugins require a special shortcut to start the browser process under the virtualization layer.
Middleware: Middleware applications may not be good candidates for sequencing as they may be runtime prerequisites for multiple applications. With later versions of App-V, they can be sequenced into a separate package that other virtual applications are linked to using a feature called Dynamic Suite Composition.^[17]
Path hard coding: The application should not have folder/file path hard coded in the application itself. Some applications hard code the path of files in their executables rather than parameterizing them or storing them in the Windows Registry. Configuration files ending in extensions such as ini, conf, dat, and txt are good places to look for application-specific settings of path information that may cause problems. Failing that, a shim can be used to remediate the application where source code or an update is not available.
Auto update: Applications with automatic updates should not be sequenced if their update mechanism cannot be disabled. Sequenced applications sometimes fail to update. In addition, allowing auto-update leads to non compliance of application version.
Services: Virtualization of services that must start at boot-time are not supported. All other types of services may generally be virtualized; they are started when the virtual application starts and shuts down or when an application main executable terminates.
Licensing policies: Applications with licensing enforcement tied to the machine, e.g. the license is tied to the system's MAC address or harddisk serial number. This type of application should not be sequenced if the activation can not be done by the user at the first launch of sequenced application, manually or by script.
Internet Explorer & service packs: Microsoft does not support sequencing of any version of Internet Explorer.

Similar technologies

Liquidware FlexApp
Cameyo
Citrix XenApp (Formerly included as "Application Streaming"/"Project Tarpon". Discontinued as of Windows Server 2012.^[18] Now uses App-V as well.)
Installfree Bridge
Novell ZENworks Application Virtualization
Turbo Studio (formerly Spoon Studio and Xenocode Virtual Application)
VMware ThinApp

Related Research Articles

<span class="mw-page-title-main">Windows 98</span> Microsoft personal computer operating system released in 1998

Windows 98 is a consumer-oriented operating system developed by Microsoft as part of its Windows 9x family of Microsoft Windows operating systems. The second operating system in the 9x line, it is the successor to Windows 95, and was released to manufacturing on May 15, 1998, and generally to retail on June 25, 1998. Like its predecessor, it is a hybrid 16-bit and 32-bit monolithic product with the boot stage based on MS-DOS.

Remote Desktop Protocol (RDP) is a proprietary protocol developed by Microsoft which provides a user with a graphical interface to connect to another computer over a network connection. The user employs RDP client software for this purpose, while the other computer must run RDP server software.

A diskless node is a workstation or personal computer without disk drives, which employs network booting to load its operating system from a server.

Microsoft Servers is a discontinued brand that encompasses Microsoft software products for server computers. This includes the Windows Server editions of the Microsoft Windows operating system, as well as products targeted at the wider business market. Microsoft has since replaced this brand with Microsoft Azure, Microsoft 365 and Windows 365.

Windows Server 2008, codenamed "Longhorn Server", is the fourth release of the Windows Server operating system produced by Microsoft as part of the Windows NT family of the operating systems. It was released to manufacturing on February 4, 2008, and generally to retail on February 27, 2008. Derived from Windows Vista, Windows Server 2008 is the successor of Windows Server 2003 and the predecessor to Windows Server 2008 R2.

As the next version of Windows NT after Windows 2000, as well as the successor to Windows Me, Windows XP introduced many new features but it also removed some others.

<span class="mw-page-title-main">Portable application</span> Type of computer program

A portable application, sometimes also called standalone, is a program designed to read and write its configuration settings into an accessible folder in the computer, usually in the folder where the portable application can be found. This makes it easier to transfer the program with the user's preferences and data between different computers. A program that doesn't have any configuration options can also be a portable application.

The booting process of Windows NT includes Windows NT 4.0, Windows 2000, Windows XP and Windows Server 2003. In Windows Vista and later, this process has changed significantly; see Windows NT 6 startup process for information about what has changed.

Application virtualization is a software technology that encapsulates computer programs from the underlying operating system on which they are executed. A fully virtualized application is not installed in the traditional sense, although it is still executed as if it were. The application behaves at runtime like it is directly interfacing with the original operating system and all the resources managed by it, but can be isolated or sandboxed to varying degrees.

The following is a timeline of virtualization development. In computing, virtualization is the use of a computer to simulate another computer. Through virtualization, a host simulates a guest by exposing virtual hardware devices, which may be done through software or by allowing access to a physical device connected to the machine.

Application streaming is a form of on-demand software distribution. In these scenarios, only essential portions of an application's code need to be installed on the computer: while the end user performs actions in the application, the necessary code and files are delivered over the network as and when they are required.

Windows Vista contains a range of new technologies and features that are intended to help network administrators and power users better manage their systems. Notable changes include a complete replacement of both the Windows Setup and the Windows startup processes, completely rewritten deployment mechanisms, new diagnostic and health monitoring tools such as random access memory diagnostic program, support for per-application Remote Desktop sessions, a completely new Task Scheduler, and a range of new Group Policy settings covering many of the features new to Windows Vista. Subsystem for UNIX Applications, which provides a POSIX-compatible environment is also introduced.

A roaming user profile is a file synchronization concept in the Windows NT family of operating systems that allows users with a computer joined to a Windows domain to log on to any computer on the same domain and access their documents and have a consistent desktop experience, such as applications remembering toolbar positions and preferences, or the desktop appearance staying the same, while keeping all related files stored locally, to not continuously depend on a fast and reliable network connection to a file server.

Remote Desktop Services (RDS), known as Terminal Services in Windows Server 2008 and earlier, is one of the components of Microsoft Windows that allow a user to initiate and control an interactive session on a remote computer or virtual machine over a network connection. RDS was first released in 1998 as Terminal Server in Windows NT 4.0 Terminal Server Edition, a stand-alone edition of Windows NT 4.0 Server that allowed users to log in remotely. Starting with Windows 2000, it was integrated under the name of Terminal Services as an optional component in the server editions of the Windows NT family of operating systems, receiving updates and improvements with each version of Windows. Terminal Services were then renamed to Remote Desktop Services with Windows Server 2008 R2 in 2009.

Windows Search is a content index desktop search platform by Microsoft introduced in Windows Vista as a replacement for both the previous Indexing Service of Windows 2000 and the optional MSN Desktop Search for Windows XP and Windows Server 2003, designed to facilitate local and remote queries for files and non-file items in compatible applications including Windows Explorer. It was developed after the postponement of WinFS and introduced to Windows constituents originally touted as benefits of that platform.

Turbo is a set of software products and services developed by the Code Systems Corporation for application virtualization, portable application creation, and digital distribution. Code Systems Corporation is an American corporation headquartered in Seattle, Washington, and is best known for its Turbo products that include Browser Sandbox, Turbo Studio, TurboServer, and Turbo.

VMware ThinApp is an application virtualization and portable application creator suite by VMware that can package conventional Windows applications so that they become portable applications by running on another operating system. According to VMware, the product has a success rate of about 90–95% in packaging applications.

In computing, virtualization or virtualisation is the act of creating a virtual version of something at the same abstraction level, including virtual computer hardware platforms, storage devices, and computer network resources.

InstallFree Inc. is a privately held company, backed by Ignition Partners and Trilogy Equity Partners, with headquarters in Stamford, CT and offices located worldwide. InstallFree specializes in Application Virtualization and delivery, based on their proprietary application virtualization technology that works on a variety of Microsoft Windows platforms such as Windows XP, Windows Vista, Windows 7, Windows Server 2003, Windows Server 2008, Terminal Server and Citrix XenApp.

Novell ZENworks Application Virtualization is an application virtualization and portable application creation console by Novell that allows a user to build applications that run like an executable file.

References

↑ "A Farewell to SoftGrid" . Retrieved 2008-07-10.
↑ "Microsoft Application Virtualization 4.5 is Now Available in Beta!" . Retrieved 2007-11-13.
↑ "Microsoft Presspass - Microsoft Completes Acquisition of Softricity". microsoft.com. Archived from the original on 2007-06-18. Retrieved 2007-05-02.
↑ "RedmondMag - Microsoft Desktop Optimization Pack 2014 Now Available" . Retrieved 2014-07-04.
↑ "Microsoft Presspass - Microsoft Extends Virtualization Strategy, Outlines Product Road Map". microsoft.com. Retrieved 2007-05-02.
↑ "App-V 5.1 Security Considerations" . Retrieved 2015-04-18. "App-V 5.1 is not a security product and does not provide any guarantees for a secure environment."
↑ "Microsoft Product Lifecycle Search".
↑ "Trademarkia - Trademark Search".
↑ "Microsoft Server Application Virtualization".
↑ "TMurgent: App-V in Stand-alone Mode" (PDF).
↑ "Microsoft: The App-V 4.x SFT File Format Specification".
↑ "OSD Illustrated".
↑ "Open Software Description Proposal".
↑ "App-V Sequencing Guide for App-V 4.6 SP1 - Microsoft Corporation (.docx file)".
↑ "Sequencing Guide for App-V 5.0 - Microsoft Corporation (.docx file)".
↑ "App-V Sequencing Guide - Microsoft Corporation (.docx file)" . Retrieved 2018-03-13.
↑ "How To Use Dynamic Suite Composition | Microsoft Docs". Technet.microsoft.com. 2016-06-16. Retrieved 2018-03-13.
↑ Trond Eirik Haavarstein (27 May 2013). "Long Live App-V 5 – Application Streaming is Dead" . Retrieved 2014-06-06.

External links

Microsoft Application Virtualization 4.6

This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.

[1] "A Farewell to SoftGrid" . Retrieved 2008-07-10.

[2] "Microsoft Application Virtualization 4.5 is Now Available in Beta!" . Retrieved 2007-11-13.

[3] "Microsoft Presspass - Microsoft Completes Acquisition of Softricity". microsoft.com. Archived from the original on 2007-06-18. Retrieved 2007-05-02.

[4] "RedmondMag - Microsoft Desktop Optimization Pack 2014 Now Available" . Retrieved 2014-07-04.

[5] "Microsoft Presspass - Microsoft Extends Virtualization Strategy, Outlines Product Road Map". microsoft.com. Retrieved 2007-05-02.

[6] "App-V 5.1 Security Considerations" . Retrieved 2015-04-18. "App-V 5.1 is not a security product and does not provide any guarantees for a secure environment."

[7] "Microsoft Product Lifecycle Search".

[8] "Trademarkia - Trademark Search".

[9] "Microsoft Server Application Virtualization".

[10] "TMurgent: App-V in Stand-alone Mode" (PDF).

[11] "Microsoft: The App-V 4.x SFT File Format Specification".

[12] "OSD Illustrated".

[13] "Open Software Description Proposal".

[14] "App-V Sequencing Guide for App-V 4.6 SP1 - Microsoft Corporation (.docx file)".

[15] "Sequencing Guide for App-V 5.0 - Microsoft Corporation (.docx file)".

[16] "App-V Sequencing Guide - Microsoft Corporation (.docx file)" . Retrieved 2018-03-13.

[17] "How To Use Dynamic Suite Composition | Microsoft Docs". Technet.microsoft.com. 2016-06-16. Retrieved 2018-03-13.

[18] Trond Eirik Haavarstein (27 May 2013). "Long Live App-V 5 – Application Streaming is Dead" . Retrieved 2014-06-06.

[1]

[2]

[3]

[4]

[5]

[6]

[7]

[8]

[9]

[10]

[11]

[12]

[13]

[14]

[15]

[16]

[17]

[18]