Abstract: According to one aspect of the disclosure, a method comprises: receiving, by a first computing device, information about one or more applications running on a second computing device, the second computing device being one of a plurality of computing devices managed by the first computing device; determining, by the first computing device, whether to power down the second computing device based at least on an analysis of the information about the one or more applications; and responsive to a determination to shutdown the second computing device, sending, by the first computing device, a command to shutdown the second computing device, wherein the second computing device is configured to save state of the one or more applications to a storage device accessible to the plurality of computing devices.

Abstract: A computer system configured to identify errors in a session launch initiated by a client application is provided. The computer system includes a memory and at least one processor coupled to the memory. The at least one processor is configured to receive one or more events from one or more applications or devices involved in the session launch, wherein an event of the one or more events comprises information from an application or device call (e.g., an application programming interface (API) call) communicated during the session launch, the information comprising destination information; build a primary Directed Acyclic Graph (DAG) based on the information from the API call; determine an error identifier based on the primary DAG; retrieve a troubleshooting recommendation from a library based on the error identifier; and send the troubleshooting recommendation to the client application.

Abstract: A computer system configured to identify errors in a session launch initiated by a client application is provided. The computer system includes a memory and at least one processor coupled to the memory. The at least one processor is configured to receive one or more events from one or more applications or devices involved in the session launch, wherein an event of the one or more events comprises information from an application or device call (e.g., an application programming interface (API) call) communicated during the session launch, the information comprising destination information; build a primary Directed Acyclic Graph (DAG) based on the information from the API call; determine an error identifier based on the primary DAG; retrieve a troubleshooting recommendation from a library based on the error identifier; and send the troubleshooting recommendation to the client application.

Abstract: A computing system includes a virtual server to provide a virtual computing session, and a client device to access the virtual computing session via a communications network. The virtual computing session includes a remote browser, and the client device includes a local browser to access user credential information. The remote browser is used to navigate to a website requiring user authentication, receive a user credential challenge from the website, and request the user credential information from the client device to satisfy the user credential challenge. The client device provides the user credential information to the remote browser for user authentication via the local browser, so as to satisfy the user credential challenge of the website.

Abstract: A computing system may be in communication with client computing devices. The computing system may include a cloud infrastructure, an offline cache, and a VDA configured to concurrently have a first registration with the cloud infrastructure, and a second registration with the offline cache, and provide corresponding virtual desktop instances for the client computing devices based upon either the first registration or the second registration. The offline cache may be configured to broker local resources for the virtual desktop instances when the cloud infrastructure is unavailable. The VDA may be configured to transition, with no transition delay, to the offline cache using the second registration when the cloud infrastructure is unavailable.

Abstract: A computing system may be in communication with client computing devices. The computing system may include a cloud infrastructure, an offline cache, and a VDA configured to concurrently have a first registration with the cloud infrastructure, and a second registration with the offline cache, and provide corresponding virtual desktop instances for the client computing devices based upon either the first registration or the second registration. The offline cache may be configured to broker local resources for the virtual desktop instances when the cloud infrastructure is unavailable. The VDA may be configured to transition to the offline cache using the second registration when the cloud infrastructure is unavailable.

Abstract: A computing system includes a virtual server to provide a virtual computing session, and a client device to access the virtual computing session via a communications network. The virtual computing session includes a remote browser, and the client device includes a local browser to access user credential information. The remote browser is used to navigate to a website requiring user authentication, receive a user credential challenge from the website, and request the user credential information from the client device to satisfy the user credential challenge. The client device provides the user credential information to the remote browser for user authentication via the local browser, so as to satisfy the user credential challenge of the website.

Abstract: A computing system may be in communication with client computing devices. The computing system may include a cloud infrastructure, an offline cache, and a VDA configured to concurrently have a first registration with the cloud infrastructure, and a second registration with the offline cache, and provide corresponding virtual desktop instances for the client computing devices based upon either the first registration or the second registration. The offline cache may be configured to broker local resources for the virtual desktop instances when the cloud infrastructure is unavailable. The VDA may be configured to transition to the offline cache using the second registration when the cloud infrastructure is unavailable.

Abstract: The use of a marker in a file to assist in the signing and/or verification of the file. The marker is recognized by the signing authority. The marker has a certain execution transparent context that reduces or eliminates the impact of the marker on execution. A signing authority accesses the file, finds the marker within the file, and identifies the execution transparent context system. The signing authority then uses the execution transparent context system to insert a signature with the same execution transparent context. A verification system finds the marker, identifies the execution transparent context of the marker, identify the execution transparent signature, and uses the execution transparent context system to then extract the signature from the execution transparent signature. That signature may then be used to verify that the file has not changed since it was signed.

Abstract: Authentication requests are redistributed among a plurality of authentication servers and to centrally managing authentication affinities among distributed servers using a secure channels affinity service. A computer system instantiates a secure channel management service configured to manage secure channel connections. The secure channel management service receives state inputs from currently deployed authentication servers. The authentication servers may be configured to queue authentication requests for transmission to authentication servers. The computer system determines that, based on the received state input, at least one of the secure channels is to be remapped to a different authentication server. The computer system also remaps the determined secure channels to distribute future authentication requests among the authentication servers.

Abstract: The use of a marker in a file to assist in the signing and/or verification of the file. The marker is recognized by the signing authority. The marker has a certain execution transparent context that reduces or eliminates the impact of the marker on execution. A signing authority accesses the file, finds the marker within the file, and identifies the execution transparent context system. The signing authority then uses the execution transparent context system to insert a signature with the same execution transparent context. A verification system finds the marker, identifies the execution transparent context of the marker, identify the execution transparent signature, and uses the execution transparent context system to then extract the signature from the execution transparent signature. That signature may then be used to verify that the file has not changed since it was signed.

Abstract: Embodiments are directed to redistributing authentication requests among a plurality of authentication servers and to centrally managing authentication affinities among distributed servers using a secure channels affinity service. A computer system instantiates a secure channel management service configured to manage secure channel connections. The secure channel management service receives state inputs from currently deployed authentication servers. The authentication servers may be configured to queue authentication requests for transmission to authentication servers. The computer system determines that, based on the received state input, at least one of the secure channels is to be remapped to a different authentication server. The computer system also remaps the determined secure channels to distribute future authentication requests among the authentication servers.