Users can connect to WorkSpaces Web from laptop or desktop computers. Q: Which devices are supported at launch? Your end users can log in with their SAML identity and start accessing websites using their existing browser. You can add this URL to your SAML provider application gateway, email it to users, re-direct from a domain you own, or push the URL as a bookmark to a device you manage. Once you have completed setup in the AWS Management Console, you can distribute the WorkSpaces Web portal endpoint URL to your users. Q: How do my end users get started with WorkSpaces Web? Resources hosted on premises must be accessible via an IPsec tunnel, AWS Direct Connect, or AWS Transit Gateway. ![]() ![]() Your internal content can exist within that VPC (for example, applications hosted on an Amazon EC2 instance), in another Amazon VPC that is peered with it, on premises, or on the public internet. You are responsible for the networking from your Amazon VPC to both the internet and any internal content. You can set controls over users' access to file transfer, clipboard, and local printers. You can set the browser policy using Google Chrome’s 300-plus user and data policies. Your VPC must have a stable connection to the content you wish to use with both WorkSpaces Web and services such as Amazon Simple Storage Service (S3), AWS Key Management Service (KMS), and Amazon CloudWatch. ![]() Create or identify an existing VPC in your account, select subnets for WorkSpaces Web traffic, and give WorkSpaces Web permission to create Cross-Account Elastic Network Interfaces (X-ENIs) that will be linked to hosts allocated to your account. WorkSpaces Web provisions specific Amazon Elastic Compute Cloud (EC2) instances on demand. Q: How does WorkSpaces Web communicate with my corporate network? Once your WorkSpaces Web portal is created, you can sign in and browse connected websites. Finally, apply browser policies and session-level controls to your web portal. Next, select an Amazon Virtual Private Cloud (VPC), subnets, a security group with connectivity to the internet, and any internal content you would like to connect with WorkSpaces Web. Then federate your existing SAML-based identity provider with WorkSpaces Web. (This is where your WorkSpaces Web portal will be created, your websites rendered, and your user analytics generated.) Select WorkSpaces Web from the left-hand menu in the WorkSpaces console. You can get started with WorkSpaces Web from the AWS Management Console. After signing in, search for Amazon WorkSpaces and select the AWS Region that will serve as your home Region. Q: How do I get started with WorkSpaces Web? Q: How is WorkSpaces Web related to other AWS end user computing services?Įach AWS end user computing service is designed to provide secure access to a different environment: WorkSpaces for fully persistent Windows and Linux virtual desktops AppStream 2.0 for application streaming or virtual desktops with selective persistence WorkSpaces Web for low-cost, secure browser-based access to internal web and SasS apps. WorkSpaces Web was purpose built to address these pains points, and is a simple way to provide access to web content while reducing risk of data exfiltration or risky connections with remote devices. Existing solutions to secure browser traffic can be overly permissive, expensive, complex, or all of these. ![]() As a result, the browser has become a critical productivity application. Many workloads are shifting from a traditional desktop environment to SaaS applications or custom-built internal websites. You can use WorkSpaces Web to secure a web browser-based productivity environment, enable safe browsing from high-security networks, or facilitate lightweight bring-your-own-device (BYOD) access for browser-only resources. Amazon WorkSpaces Web is a low cost, fully managed, Linux-based service, designed to facilitate secure browser access to internal websites and software-as-a-service (SaaS) applications from existing web browsers, without the administrative burden of appliances, managing infrastructure, specialized client software, or virtual private network (VPN) connections.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |