Installing PCoIP Management Console into AWS EC2¶
The PCoIP Management Console AMI is a conversion of the OVA file into the Amazon Machine Image (AMI) format with SSH enabled to permit secure administrative access.
The virtual machine is made available for users of the PCoIP Management Console that wish to move more of their deployment to the cloud—especially those deploying Amazon WorkSpaces with PCoIP Zero Clients.
Amazon Web Services account with access to deploying EC2 instances
Ensure you have the Port Numbers opened and all inbound ports are restricted to your corporate network and you meet the System Configuration requirements for your PCoIP Management Console.
Important: PCoIP Management Console must not be accessible from unsecured networks
The PCoIP Management Console must only be accessible by endpoints from the open Internet as described within the PCoIP Management Console Administrators' Guide. Any other exposure to the open Internet is an unsupported use of the product and will void any warranty.
Info: Notable network behaviors
Network usage can be higher when firmware is being uploaded to endpoints. A permanent web socket connection is maintained to every online endpoint
To deploy PCoIP Management Console AMI:
Log in to AWS Console.
Choose the region the AMI resides in.
Navigate to EC2.
Navigate to AMIs.
Search Public AMIs for the AMI ID obtained from the Management Console release notes.
Select the PCoIP Management Console AMI and click Launch.
Choose an Elastic Network Adapter (ENA) supported instance type (m5.xlarge recommended - see system requirements).
Configure the AWS Launch steps 2-5 as appropriate for your organization.
Select or create a security group in step 6 that will provide access to the required ports, with the inbound ports restricted to only your corporate network. Ensure network access is appropriate such that administrators are able to access ports 22 and 443, and that endpoints can access port 5172.
Important: Connectivity issues
If you are unable to get this access working, you will need to review your VPC configurations (VPCs, Subnets, Route Tables), Security configurations (Network ACLs, Security Groups), and possibly VPN Connections or Direct Connect settings.
Complete the steps.
When Launching, select a keypair. To ssh into the instance you will use the user admin in conjunction with the keypair you used on launch.
After the Management Console is deployed, it is important the system is appropriately secured.
Securing PCoIP Management Console User Passwords
Default CentOS Configuration for PCoIP Management Console
PCoIP Management Console Remote Endpoint Management (Enterprise)