LogoLogo
  • Welcome to WorkSpaces Manager
  • Overview
    • Change Log
      • Stable
      • Beta
    • Portal Requirements
      • Software Requirements
      • Hardware Requirements
    • Installation Prerequisites
      • Active Directory Service Account
      • Amazon WorkSpaces Cost Optimizer
      • CloudWatch Log Group & Eventbridge Rule
      • Port Requirements
      • AWS Service Endpoints
    • Installation Procedure
      • Subscribe to WorkSpaces Manager License Key
      • Request a License Key
      • Subscribe to WorkSpaces Manager Appliance
      • Deploy WorkSpaces Manager Appliance via CloudFormation
      • Configure WorkSpaces Manager
    • Upgrade Procedures
      • From Version 5
      • WSM Update Tool
      • Latest Version Updates
    • Alternate deployment options
      • Install manually on EC2
      • Deployment from Shared AMI
        • Security Group
        • IAM Requirements: Custom Policies
        • IAM Requirements: Role and EC2 instance profile
        • Shared AMI (Amazon Machine Image)
      • Create AMI via Packer
      • Deploy an RDS Database via Terraform
    • WorkSpaces Performance Monitor Agent
    • High Availability (HA)
    • Appendices
      • Administrator Active Directory Permissions
      • SES Configuration
      • HTTPS/TLS Encryption
      • Friendly Portal URL Address
      • GPO and values for WorkSpaces Performance Monitor Agent
      • GPO and value for Disconnection after idle time
      • IAM Policies in JSON format
      • AWS CLI v2
      • LDAP (Active Directory) Troubleshooting for WSM
      • RDS Database Options
Powered by GitBook
On this page
  1. Overview
  2. Appendices

HTTPS/TLS Encryption

HTTPS encryption secures data transmitted between a client and a server by encrypting the communication using TLS (Transport Layer Security), ensuring confidentiality and integrity of the information.

PreviousSES ConfigurationNextFriendly Portal URL Address

Last updated 2 months ago

To configure HTTPS/TLS encryption in front of the WorkSpaces Manager Appliance, you can add a Network Load Balancer (NLB) to split the presentation layer into a High Availability (HA) mode. Follow the steps below to set up encryption:

  1. Create a Network Load Balancer:

    • Navigate to the EC2 console and select Load Balancers.

    • Create a Network Load Balancer with the appropriate settings and assign the correct Target Group.

  2. Add a Listener for HTTPS (Port 443):

    • In the Listener section, add a listener for HTTPS on port 443.

  3. Select Target Group for Default Action:

    • Under the Default Action, select the Target Group you created, which points to your EC2 instances running WorkSpaces Manager.

  4. Select the SSL Certificate:

    • In the SSL/TLS certificate section, choose the appropriate certificate from AWS Certificate Manager (ACM).

    • If you don’t have a certificate yet, generate one in ACM for your friendly hostname.

  5. Click ‘Add’:

    • Complete the setup by clicking ‘Add’ to apply the HTTPS listener and associated settings.

With this configuration, traffic between the client browser and the WorkSpaces Manager Appliance will be securely encrypted using TLS, ensuring secure communication across the network.

If you'd like to add a Friendly Name and URL to your WorkSpaces Manager Portal, please refer to for detailed instructions. This appendix will guide you through the steps required to configure a custom domain and associate it with your portal, enhancing accessibility and branding for users.

this appendix