Desktop and Application Streaming

Category: Security, Identity, & Compliance

Enabling identity federation with Duo Single Sign-On and Amazon AppStream 2.0

Amazon AppStream 2.0 supports identity federation to AppStream 2.0 stacks through Security Assertion Markup Language 2.0 (SAML 2.0). This blog provides guidance on how to configure Duo Single Sign-On as an identity provider for AppStream 2.0. If you don’t have an identity provider, you can use AWS Single Sign-On. Review the AppStream 2.0 administration guide […]

Read More

Using multi-Region AWS Managed Active Directory with Amazon WorkSpaces

AWS Directory Service for Microsoft Active Directory is a fully managed Microsoft Active Directory that is often paired with Amazon WorkSpaces. Customers choose AWS Managed Microsoft AD because of its built-in high availability, monitoring, and backups. AWS Managed Microsoft AD Enterprise edition adds the ability to configure multi-Region Replication. This feature automatically configures inter-Region networking […]

Read More

How to use Okta claims with application entitlements for Amazon AppStream 2.0

This blog post shows you how to use Okta claims to configure application entitlements for your Amazon AppStream 2.0 stacks. Customers use Amazon AppStream 2.0 to manage applications centrally, and stream them to their end users. With , you control access to specific applications in the AppStream 2.0 application catalog with SAML assertions. In addition, […]

Read More

Use Amazon AppStream 2.0 application entitlements with Azure AD

This blog post shows you how to use application entitlements with Azure Active Directory (Azure AD) for your AppStream 2.0 stacks. Customers use Amazon AppStream 2.0 to manage applications centrally, and stream them to their end users. With application entitlements, you can control access to specific applications in the AppStream 2.0 application catalog based on […]

Read More

Create a Single Identity Provider for all your Amazon AppStream 2.0 Stacks with Azure AD

Customers use Amazon AppStream 2.0 to centrally manage applications and stream them to their end users. Organizations have multiple stacks associated with different fleets to separate workloads based on underlying resources, applications, or different user permissions. Administrators want a way to manage permissions for multiple stacks without having to create an IAM identity provider for […]

Read More

Filtering internet traffic from Amazon WorkSpaces

Introduction Amazon WorkSpaces is a fully managed Desktop as a Service (DaaS) that prioritizes security and simplicity. Customers can secure their Amazon WorkSpaces deployments through a variety of means. Security groups and network access control lists are available on a customer’s Virtual Private Cloud (VPC). The Amazon WorkSpaces service side has RADIUS multi-factor authentication, trusted […]

Read More

Enabling Federation with SimpleSAMLphp and Amazon AppStream 2.0

SimpleSAMLphp is an open-source project written in native PHP that deals with authentication for SAML 2.0 as a Service Provider and as an Identity Provider. You can use single sign-on with Amazon AppStream 2.0 with many identity services that are compliant with Security Assertion Markup Language 2.0 (SAML 2.0). This post explains how to configure federated user […]

Read More

Anomaly Detection in Amazon WorkSpaces

Amazon WorkSpaces is a fully managed, secure Desktop-as-a-Service (DaaS) solution that runs on AWS. Our customers have been deploying WorkSpaces to provide scalable end user computing to their users regardless of work location. Since the launch of WSP, additional capabilities such as USB and smart card support have enabled additional workloads to benefit from moving […]

Read More

Use Session Tags to Simplify AppStream 2.0 Permissions

Customers use Amazon AppStream 2.0 to centrally manage applications and stream them to their end users. Organizations have multiple stacks associated with different fleets to separate workloads based on underlying resources, applications, or different user permissions. In this blog post I show you how to use session tags in the SAML assertion to be used […]

Read More

DXC Technology creates DevSecOps and CI/CD for mainframe and Java using Amazon AppStream 2.0

DXC Technology is a global IT service leader providing end-to-end IT services on digital transformation to businesses and governments.  DXC is active in the areas of mainframe technology transformation to help customer move to Agile and DevSecOps practices using the cloud. DXC created an in-house DevSecOps platform at a global insurer for IBM Z series mainframe development. […]

Read More