Menu
Active Directory Domain Services on AWS
Quick Start Reference Deployment Guide

Step 1. Prepare Your AWS Account

Before you deploy the Quick Start, make sure that your AWS account is set up properly by following these steps.

  1. If you don't already have an AWS account, create one at http://aws.amazon.com by following the on-screen instructions. Part of the sign-up process involves receiving a phone call and entering a PIN using the phone keypad.

  2. Use the region selector in the navigation bar to choose the Amazon EC2 region where you want to deploy AD DS on AWS.

    
                        Choosing an Amazon EC2 region

    Figure 7: Choosing an Amazon EC2 Region

    Consider choosing a region closest to your data center or corporate network to reduce network latency between systems running on AWS and the systems and users on your corporate network.

    Important

    This Quick Start uses the m4.xlarge instance type for the Active Directory and Remote Desktop Gateway instances, and NAT gateways for outbound Internet access. At the time of this writing, some of these features aren’t available in China (Beijing), South America (São Paulo), or Asia Pacific (Seoul).

    Also, if you’re deploying scenario 3, note that AWS Directory Service is available only in the regions listed on the AWS Regions and Endpoints page in the AWS documentation. We recommend that you check service availability before you choose a region. Otherwise, deployment will fail.

  3. Create a key pair in your preferred region. To do this, in the navigation pane of the Amazon EC2 console, choose Key Pairs, Create Key Pair, type a name, and then choose Create.

    
                        Creating a Key Pair

    Figure 8: Creating a Key Pair

    Amazon EC2 uses public-key cryptography to encrypt and decrypt login information. To be able to log into your instances, you must create a key pair. With Windows instances, we use the key pair to obtain the administrator password via the Amazon EC2 console and then log in using Remote Desktop Protocol (RDP) as explained in the step-by-step instructions in the Amazon Elastic Compute Cloud User Guide.

  4. If necessary, request a service limit increase for the m4.xlarge instance type. To do this, in the AWS Support Center, choose Create Case, Service Limit Increase, EC2 instances, and then complete the fields in the limit increase form. The current default limit for this instance type is 20 instances.

    You might need to request an increase if you already have an existing deployment that uses this instance type, and you think you might exceed the default limit with this reference deployment. It might take a few days for the new service limit to become effective. For more information, see Amazon EC2 Service Limits in the AWS documentation.

    
                        Requesting a Service Limit Increase

    Figure 9: Requesting a Service Limit Increase