Menu
Exchange Server on AWS
Quick Start Reference Deployment Guide

Automated Deployment

This automated AWS CloudFormation template deploys a highly available architecture including Active Directory domain controllers and Exchange 2013 servers in multiple Availability Zones into an Amazon VPC.

Launch the AWS CloudFormation template in the US West (Oregon) region.

Note

You are responsible for all costs incurred by your use of the AWS services used while running this Quick Start reference deployment. As of the date of publication, the cost for creating and running the template with default settings is approximately $5.50 an hour, but prices are subject to change. See the pricing pages of the specific AWS services you will be using for full details.

The servers in this stack are bootstrapped from scratch using the base Amazon Machine Image (AMI) for Microsoft Windows Server 2012 R2, which allows you to customize the environment based on a number of input parameters in the AWS CloudFormation template. It takes approximately three hours to create.

You can also download the nested template, which deploys AD DS and Exchange Server.

After the stack has been created, you will have two Exchange Server 2013 instances deployed across two Availability Zones. You can navigate to the Exchange Administrative Center (EAC) at https://exch1/ecp or https://exch2/ecp to configure your Exchange organization. You'll need to sign in to the EAC with the administrative user name and password used when launching the stack.

Template Customization

This automation allows for rich customization of several template parameters. You can modify these parameters, change the default values, or, if you choose to edit the code of the template itself, you can create an entirely new set of parameters based on your specific deployment scenario. The parameters include the following default values:

Parameter Default Description
KeyPairName Requires input Public/private key pairs, which allow you to connect securely to your instance after it launches
ADInstanceType m4.xlarge Amazon EC2 instance type for the first Active Directory instance
AD2InstanceType m4.xlarge Amazon EC2 instance type for the second Active Directory instance
NATInstanceType t2.small Amazon EC2 instance type for the NAT instances
RDGWInstanceType m4.xlarge Amazon EC2 instance type for the Remote Desktop Gateway instance
EXCHInstanceType r3.xlarge Amazon EC2 instance type for the Exchange 2013 multi-role servers
EdgeInstanceType m3.large Amazon EC2 instance type for the Exchange 2013 Edge Transport servers
DomainDNSName example.com Fully qualified domain name (FQDN) of the forest root domain
DomainNetBIOSName example NetBIOS name of the domain, for users of earlier versions of Windows (maximum 15 characters)
ADServerNetBIOSName1 DC1 NetBIOS name of the first AD server (maximum 15 characters)
ADServerNetBIOSName2 DC2 NetBIOS name of the second AD server (maximum 15 characters)
RestoreModePassword Requires input Password for a separate administrator account when the domain controller is in restore mode. This must be a complex password that’s at least 8 characters long.
DomainAdminUser StackAdmin User name for the account that will be added as domain administrator (separate from the default "Administrator" account)
DomainAdminPassword Requires input Password for the domain administrator user. This must be a complex password that’s at least 8 characters long.
UserCount 25 Total number of test user accounts to create in Active Directory
DMZ1CIDR 10.0.32.0/20 CIDR block for the public DMZ subnet located in Availability Zone 1
DMZ2CIDR 10.0.96.0/20 CIDR block for the public DMZ subnet located in Availability Zone 2
PrivSub1CIDR 10.0.0.0/19 CIDR block for the AD server tier located in Availability Zone 1
PrivSub2CIDR 10.0.64.0/19 CIDR block for the AD server tier located in Availability Zone 2
VPCCIDR 10.0.0.0/16 CIDR block for the Amazon VPC
AD1PrivateIp 10.0.0.10 Fixed private IP for the first Active Directory server located in Availability Zone 1
AD2PrivateIp 10.0.64.10 Fixed private IP for the second Active Directory server located in Availability Zone 2
EXCH1PrivateIp 10.0.0.150 Primary private IP for the first Exchange server located in Availability Zone 1
EXCH1PrivateIp2 10.0.0.151 Secondary private IP for the first Exchange server in Availability Zone 1
EXCH2PrivateIp 10.0.64.150 Primary private IP for the second Exchange server located in Availability Zone 2
EXCH2PrivateIp2 10.0.64.151 Secondary private IP for the second Exchange server in Availability Zone 2
IncludeEdge false A value that controls the inclusion of Exchange Edge Transport servers. Set this parameter to true to include Exchange Edge Transport servers in the public subnets

Figure 25: Input Parameters for the AWS CloudFormation Template

If you have already deployed Active Directory Domain Services in AWS, you can launch this Microsoft Exchange Server infrastructure into an existing Amazon VPC by using the standalone AWS CloudFormation template for Exchange Server.

On this page: