In this case, I need to deploy a Directory service into my AWS account. What happens if I don’t have a directory service in AWS, or an AD connector to authenticate me against my on-prem domain controllers? For more information on the security model in AWS, you can read a previous blog I’ve published on the topic. Users have the ability to re-configure that. AWS Workspaces are configured by default to receive updates automatically. Security: the typical sandwich model applies when it comes to service security, with a slight amendment.Best practices mandates you use a NAT gateway and deploy your Virtual Desktops into private subnets. Internet Access: I am deploying workspaces into a public subnet for the purposes of this blog.If you are looking for application packaging, reach out to me on LinkedIn or refer to Workspaces Application Manager. Application packaging: This blog covers deployment of a vanilla Windows 10 on WorkSpaces.The alternative is, an AWS AD connector pointing to on-premise AD is already deployed. You will need to create your own users in the directory service. If not, there’s a quick code snippet below on how to set this up. Authentication: A directory services is already available in your AWS environment and registered.Connectivity: You are looking at accessing your workspaces over the internet.In this blog, I will make some assumptions to deploy a quick workspaces. Such architecture is compliant with the AWS well architected framework. The reference architecture provided by AWS below, enables private, secure and reliable access to Workspaces provisioned in an AWS account, which has connectivity to an on-premise Active Directory. In this instance, the workspaces best practices are defined here and would generally look like this from an architecture perspective. To answer all considerations, AWS provides best practice setup papers. What applications are they going to be hosting? Do they need to connect to an application using a browser? Or, do I need to package applications?.How do I authenticate to those desktops?.There are some key considerations we need to look at when attempting to provide employees with Virtual Desktops (cloud or otherwise): If you’re interested in reading more about how Contino can help your business set up a full scale virtual desktop solution, in 2 weeks, and scale your enterprise roll-out using integration with service-now, consider starting here. In this blog, I intend to demonstrate a step by step, technical setup of a simple AWS Workspace and show a reference architecture for virtual desktop. You also can register to attend our webinar on the topic of Virtual Desktops in the Cloud here. My colleagues at Contino have highlighted the value of cloud-enabled remote working in these blogs ( here and here). COVID-19 is not just a scare, it’s the real thing. Note: This blog was first published on IntroductionĪs of February 2020, businesses globally started realising they needed to be ready to allow their workforce to work from home, using remote technologies and at scale. Unlocking AWS Virtual Desktops in 10 minutes
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |