Category: Technical How-to

You can setup cross-Region redirection with services like Geo Targetly to automatically redirect Amazon AppStream 2.0 users to the AppStream stacks that are closest to their current location. If the AppStream 2.0 deployment they use for their role is tied to a specific Region, users can experience high latency when traveling far distances from the […]

Amazon AppStream 2.0 supports identity federation to AppStream 2.0 stacks through Security Assertion Markup Language 2.0 (SAML 2.0). This feature offers your users the convenience of access to their AppStream 2.0 applications using their existing identity credentials. You also have the security benefit of identity authentication by your IdP. By using your IdP, you can […]

Amazon AppStream 2.0 supports identity federation to AppStream 2.0 stacks through Security Assertion Markup Language 2.0 (SAML 2.0). This feature offers your users the convenience of access to their AppStream 2.0 applications using their existing identity credentials. You also have the security benefit of identity authentication by your IdP. By using your IdP, you can […]

In this blog, I walk you through configuring Amazon WorkSpaces multi-factor authentication (MFA) with OneLogin. Solution overview The steps to work through this blog are: Configure OneLogin RADIUS for use with Amazon WorkSpaces. Configure Active Directory Connector for MFA. Test logon. Prerequisites: This post assumes you have the following. A OneLogin account. OneLogin Active Directory […]

Customers are increasing adoption of container technologies, and Docker is one of the most popular providers. With containers, developers can ensure that application modules are self-contained, runtime environments are agnostic, and external dependencies are well documented. This is especially important as more enterprises adopt DevOps principles and deploy microservices. Developers are looking for speed, flexibility, […]

The default behavior of an Amazon AppStream 2.0 Stack is to present all the applications to the end user that were added to the application catalog by the administrator creating the image. Customers accustomed to targeting individual applications to end users based on Active Directory group membership can also continue to do so using the […]

SimpleSAMLphp is an open-source project written in native PHP that deals with authentication for SAML 2.0 as a Service Provider and as an Identity Provider. You can use single sign-on with Amazon AppStream 2.0 with many identity services that are compliant with Security Assertion Markup Language 2.0 (SAML 2.0). This post explains how to configure federated user […]

Amazon AppStream 2.0 has released the Managed Image updates feature. This feature applies the AppStream 2.0 component and Windows updates to your existing AppStream 2.0 images with a single operation. Our previous blog covers the feature details. Customers ask, how can we schedule this? In this blog, we describe how to schedule your AppStream 2.0 […]

Amazon WorkSpaces is a fully managed, secure Desktop-as-a-Service (DaaS) solution that runs on AWS. Our customers have been deploying WorkSpaces to provide scalable end user computing to their users regardless of work location. Since the launch of WSP, additional capabilities such as USB and smart card support have enabled additional workloads to benefit from moving […]

Amazon AppStream 2.0 recently added a new feature called Managed Image Updates, which significantly reduces the effort required for customers to keep their images up to date. Software patching is critical for the security and performance of compute resources. Frequent patching is listed as a best practice in the Security Pillar of the Well-Architected Framework. […]