Category: Technical How-to

Amazon WorkSpaces Applications supports identity federation to WorkSpaces Applications stacks through Security Assertion Markup Language 2.0 (SAML 2.0). This feature offers your users the convenience of access to their WorkSpaces Applications applications using their existing identity credentials. You also have the security benefit of identity authentication by your IdP. By using your IdP, you can […]

Amazon AppStream 2.0 supports identity federation to AppStream 2.0 stacks through Security Assertion Markup Language 2.0 (SAML 2.0). This feature offers your users the convenience of access to their AppStream 2.0 applications using their existing identity credentials. You also have the security benefit of identity authentication by your IdP. By using your IdP, you can […]

In this blog, I walk you through configuring Amazon WorkSpaces multi-factor authentication (MFA) with OneLogin. Solution overview The steps to work through this blog are: Configure OneLogin RADIUS for use with Amazon WorkSpaces. Configure Active Directory Connector for MFA. Test logon. Prerequisites: This post assumes you have the following. A OneLogin account. OneLogin Active Directory […]

Customers are increasing adoption of container technologies, and Docker is one of the most popular providers. With containers, developers can ensure that application modules are self-contained, runtime environments are agnostic, and external dependencies are well documented. This is especially important as more enterprises adopt DevOps principles and deploy microservices. Developers are looking for speed, flexibility, […]

The default behavior of an Amazon WorkSpaces Applications Stack is to present all the applications to the end user that were added to the application catalog by the administrator creating the image. Customers accustomed to targeting individual applications to end users based on Active Directory group membership can also continue to do so using the […]

SimpleSAMLphp is an open-source project written in native PHP that deals with authentication for SAML 2.0 as a Service Provider and as an Identity Provider. You can use single sign-on with Amazon AppStream 2.0 with many identity services that are compliant with Security Assertion Markup Language 2.0 (SAML 2.0). This post explains how to configure federated user […]

Amazon AppStream 2.0 has released the Managed Image updates feature. This feature applies the AppStream 2.0 component and Windows updates to your existing AppStream 2.0 images with a single operation. Our previous blog covers the feature details. Customers ask, how can we schedule this? In this blog, we describe how to schedule your AppStream 2.0 […]

Amazon WorkSpaces is a fully managed, secure Desktop-as-a-Service (DaaS) solution that runs on AWS. Our customers have been deploying WorkSpaces to provide scalable end user computing to their users regardless of work location. Since the launch of WSP, additional capabilities such as USB and smart card support have enabled additional workloads to benefit from moving […]

Amazon AppStream 2.0 recently added a new feature called Managed Image Updates, which significantly reduces the effort required for customers to keep their images up to date. Software patching is critical for the security and performance of compute resources. Frequent patching is listed as a best practice in the Security Pillar of the Well-Architected Framework. […]

The Amazon AppStream 2.0 client is powerful tool for extending the capabilities of AppStream 2.0 beyond what an HTML5 web browser can provide. Many features, such as local printer redirection, USB redirection and file system redirection are only available via the AppStream 2.0 client. Customers using the AppStream 2.0 streaming URL connection method often ask […]