Prepare Amazon WS

During this task we will prepare an existing EC2 instance for use with Active Directory, create an AWS Directory service as a connector that points to Active Directory, and launches an associated workspace.

Steps

Before you begin

  • Ensure that you have the common UDP port and secret key values available.

Prepare an Amazon EC2 Instance

  1. In your browser, navigate to Amazon Web Services console and login as an administrator.

  2. Select Services > EC2.

  3. In the left pane select INSTANCES > Instances.

  4. Locate the Active Directory instance (referred to as Instance A), and select it.

  5. In the Description tab, Note the Private IP address of the instance.

  6. In the lower right, click the VPC ID value.

  7. In the associated VPC page, note the IPv4 CIDR value.

  8. Navigate to NETWORK & SECURITY > Security Groups.

  9. Open the Instance A security group and click Add to add inbound rules to enable UDP/TCP for ports 53, 88. and 389 against the IPv4 CIDR.

Create an AWS Directory Service

  1. Return to the Services tab of the AWS Console.

  2. Enter Directory Service into the search bar and click Directory Service.

  3. Click Set up directory.

  4. Select AD Connector as Directory type and click Next.

  5. Choose an appropriate size and click Next.

  6. Choose the Instance A VPC, subsets if reuqired, and choose Next.

  7. In the Active Directory information step enter:

    Field Value
    Connected Directory DNS Required: Your domain.
    For example: biz.nicopowered.com
    Connected NetBIOS Name Option. Anything appropriate.
    For example: biz.
    DNS Address The private IP address of instance A, previously captured.
    Service Account username Username of the active directory account previously created.
    Service Account password Associated password.

    Click Next when complete.

  8. Review the values and click Create directory.
    When complete the connector should resemble:

Launch an Amazon Workspace

  1. Navigate to Workspaces.

  2. If required,create a workspace, otherwise select a workspace and click Launch Workspaces.

  3. From the Directory dropdown list select a directory to authenticate against and click Next Step.

  4. Select an appropriate user from the directory service and click Add Selected.

  5. Select a bundle, review your configure and .click Launch Workspace.

The Amazon Workspace is now ready for use.