Menu
Exchange Server on AWS
Exchange Server Quick Start

Automated Deployment

The Exchange Server master template uses the Scalable VPC Quick Start, the Active Directory Domain Services Quick Start, and the Remote Desktop Gateway Quick Start as building blocks in the deployment. It deploys a highly available architecture that includes Active Directory domain controllers in Windows Server 2016, Remote Desktop Gateway, and Exchange 2013 servers in multiple Availability Zones in a VPC.

Launch the AWS CloudFormation template in the US West (Oregon) region.

Note

You are responsible for all costs incurred by your use of the AWS services used while running this Quick Start reference deployment. See the pricing pages of the specific AWS services you will be using for full details.

The Active Directory domain controllers use the Amazon Machine Image (AMI) for Microsoft Windows Server 2016. The servers in this stack are bootstrapped from scratch using the base AMI for Microsoft Windows Server 2012 R2, which allows you to customize the environment based on a number of input parameters in the AWS CloudFormation template. The stack takes approximately three hours to create.

You can download the nested templates that are used by the master template separately:

After the stack has been created, you will have two Exchange Server 2013 instances deployed across two Availability Zones. You can navigate to the Exchange Administrative Center (EAC) at https://exch1/ecp or https://exch2/ecp to configure your Exchange organization. You'll need to sign in to the EAC with the administrative user name and password used when launching the stack.

Template Customization

This automation allows for rich customization of several template parameters. You can modify these parameters, change the default values, or, if you choose to edit the code of the template itself, you can create an entirely new set of parameters based on your specific deployment scenario. The parameters include the following default values:

Parameter Default Description
AvailabilityZones Requires input List of Availability Zones to use for the subnets in the VPC. The Quick Start uses two Availability Zones from your list and preserves the logical order you specify.
KeyPairName Requires input Public/private key pairs, which allow you to connect securely to your instance after it launches
DMZ1CIDR 10.0.128.0/20 CIDR block for the public DMZ subnet located in Availability Zone 1
DMZ2CIDR 10.0.144.0/20 CIDR block for the public DMZ subnet located in Availability Zone 2
PrivSub1CIDR 10.0.0.0/19 CIDR block for the AD server tier located in Availability Zone 1
PrivSub2CIDR 10.0.32.0/19 CIDR block for the AD server tier located in Availability Zone 2
VPCCIDR 10.0.0.0/16 CIDR block for the Amazon VPC
EdgeInstanceType m4.large Amazon EC2 instance type for the Exchange 2013 Edge Transport servers
EXCHInstanceType r4.xlarge Amazon EC2 instance type for the Exchange 2013 multi-role servers
EXCH1PrivateIp 10.0.0.150 Primary private IP for the first Exchange server located in Availability Zone 1
EXCH1PrivateIp2 10.0.0.151 Secondary private IP for the first Exchange server in Availability Zone 1
EXCH2PrivateIp 10.0.32.150 Primary private IP for the second Exchange server located in Availability Zone 2
EXCH2PrivateIp2 10.0.32.151 Secondary private IP for the second Exchange server in Availability Zone 2
IncludeEdge false Set this parameter to true to include Exchange Edge Transport servers in the public subnets
ADInstanceType m4.xlarge Amazon EC2 instance type for the first Active Directory instance
AD2InstanceType m4.xlarge Amazon EC2 instance type for the second Active Directory instance
AD1PrivateIp 10.0.0.10 Fixed private IP for the first Active Directory server located in Availability Zone 1
AD2PrivateIp 10.0.32.10 Fixed private IP for the second Active Directory server located in Availability Zone 2
ADServerNetBIOSName1 DC1 NetBIOS name of the first AD server (maximum 15 characters)
ADServerNetBIOSName2 DC2 NetBIOS name of the second AD server (maximum 15 characters)
DomainAdminUser StackAdmin User name for the account that will be added as domain administrator (separate from the default "Administrator" account)
DomainDNSName example.com Fully qualified domain name (FQDN) of the forest root domain
DomainNetBIOSName example NetBIOS name of the domain, for users of earlier versions of Windows (maximum 15 characters)
DomainAdminPassword Requires input Password for the domain administrator user. This must be a complex password that’s at least 8 characters long.
RestoreModePassword Requires input Password for a separate administrator account when the domain controller is in restore mode. This must be a complex password that’s at least 8 characters long.
NumberOfRDGWHosts 1 The number of Remote Desktop Gateway hosts to create
RDGWCIDR Requires input The CIDR block that’s allowed to access Remote Desktop Gateway
RDGWInstanceType t2.large The name of your S3 bucket, if you decide to customize or extend the Quick Start for your own use
QSS3BucketName aws-quickstart The name of your S3 bucket, if you decide to customize or extend the Quick Start for your own use
QSS3KeyPrefix quickstart-microsoft-exchange/ The S3 key prefix used for your copy of Quick Start assets, if you decide to customize or extend the Quick Start for your own use

Figure 25: Input Parameters for the AWS CloudFormation Template

If you have already deployed Active Directory Domain Services on AWS, you can launch this Microsoft Exchange Server infrastructure into an existing VPC by using the standalone AWS CloudFormation template for Exchange Server.

On this page: