The document provides an overview of operationalizing Microsoft workloads using AWS services like AWS Systems Manager and Amazon CloudWatch. It discusses how AWS Systems Manager can be used for infrastructure provisioning, configuration management, monitoring, and resource optimization of Microsoft workloads running on AWS. It also covers how Amazon CloudWatch can provide visibility and monitoring of these workloads. The document includes demos of these services.
90. RDGateway Manage r
File Action View Help
X
RDGatewayManager
v i EC2AMAZ-NTOAJFQ(Local)
" Policies
.....Connection Authorization Policies
Resource Authorization Policies
Monitoring
< >
Connection Authorization Policies
ARemoteDesktopconnectionauthorizationpoicy{ROCAP)allowsyou tospeafytheus= whocanconnecttothisRDGatewayserver.
.O
rnrd
,er
-3
Poicy C,ApptiedinOrderUsted) UserGroups OientComputerGroups Status
Default-CAP vaecdemoOomainAdmins;vae...Not applicableviocomputer gr... Enabled
••
Alowed-RO{i atewayAccess vaecdemoOoman Admns;vae... Not applicableviocomputergr... Enabled
Apply this policywhen a user attempts to connect to the RDGatewayserver:
If the user isa member of any of the following usergroups:
vaecdemo Domain Users
If the client computer isa member of anyof the following compu te r groups:
Not applicable (no computer group is specified)
If the user uses the following supported Windows aut hentication methods:
Password or smart card
Allow the user to connect to this RD Gateway server and disable device redirection for the following client devices:
Not applicab le(device redirectionis allowed for all clientdevices )
After the idle timeout is reached:
-Not applicable (no idle timeout)
After the session timeout is reached:
- Not applicable(no session timeo ut)
Ifthe userdoes not meet the conditions of thi.s policy, then RDGateway attempts to verify wheth er the user meets the conditions for the next policyin the list.
..,
=
Actions
Connection Authorization Policies ..
►
►
Create New Policy
61Configure Central RDCAP
View
19.Refresh
6 Help
..PIVauthorization
Move Up
• MoveDown
@ Disable
)( Delete
□ Properties
6 Help
91. RDGateway Manager
File Action View Help
.;--.. 1_.rmliJ tim
X
RDGatewayManager
,:l EC2AMAZ-NTOAJFQ(Local)
K2AMAZ-NTOAJFQ(LocaO
EC2AMAZ-NTOAJFQPropert iesRDGateway Server Status:EC2AMAZ
ConnectionStatus
Total number of connections
ServerFann
General
Audlng
SSLCertificate
SSLBndong
TransportSettings
Messaong
RDCAPStore
X
Number of users connected to this server
Number of resources thatusers are connec
ConfigurationStatus
CertificateisneededfOfsecurecoomunicatlonal HTTPSIUDPUstenersandforNAP
messaging.CertificateisautomaticallyboundtotheconfiguredHTTPand UDPports.
i. Thefollowiig certificateisn staled onEC2AMAZ-NTOAJFQ
.DConnection authorization policies
':.tJResource authorization policies
,:l RDGateway server farm members
Issuedto:
Issuedby :
E,cpirationdate: 2/25/2020
corrc:,ute-1.amaoznaws.com
compute-1.amaoznaws.com
Specifythetype al SSLcertilcate toImport forthe RDGatewayserverby doingoneal
the folowing:
0 Createasef-s ignedcertficate
I
=@ Select an eiostingcertificate fromthe RDGatewayEC2AMAZ-NTOAJFQ
Certificates(LocalComputer)/Personalstore
ImportCertiicate...
0 Importacertilcate into the RDGatewayEC2AMAZ-NTOAJFQ
Certiicates (LocalComputer)/Personalstore
I
OK Cancel I fpply
Actions
...
EC2AMAZ-NTOAJFQ(Local)
Do not manage thisserver
Export policyand configuration settings
Import policy and configuration settings
@ Properties
View ►
LQ;Refre sh
6 Help
Imports RDGateway configuration and policies from an xml file
2:41 PM
== p (OJ e P!'I 0 c1x 09/6/2019
92. RDGateway Manage r
File Action View Help
X
RDGatewayManager
,:lEC2AMAZ-NTOAJFQ(Local)
K2AMAZ-NTOAJFQ(LocaO
EC2AMAZ·NTOAJFQPropertiesRDGat ewayServer Status: E C 2 A M A Z
ConnectionStatus
Total number of connections
ServerFann
General
Audlng
SSLCertificate
SSLBndgng
TransportSettings
Messagng
RDCAPStore
X
Number of users connected to this server
Number of resources thatusers are connec
Configuration Status
Usingthesettlngsbelow.youcan modifytheIP/PortsforHTTPandUDPtransports.Note:
BothRPC-HTTPandHTTPtransport sharethesamesettings.
Connection authorization policies HTTPTransportSettings
Resource authorization policies
:JRDGateway server farm members
IPAddress /!JIUnassigned V
I
••
HTTPS Port ( defaut 443) ._4_143 I.
TTPPortd au 80
UDPTransport Settings
0 EnableUDPtransport
IPAddress /!JIUnassigned v
Port( default3391)
OK Cancel I fpply
Actions
..EC2AMAZ-NTOAJFQ(Loca l)
Do not manage this server
Export policy and configuration settings
Importpolicy and configurationsettings
ffi Properties
View ►
LQ;Refresh
6 Help
2:42 PM
== p [OJ e e'.'I r.a O c1x 09/6/2019