GEOG 865
Cloud and Server GIS

Logging in to your instance

PrintPrint

Now that your site has been created and started, you can get ready to log in to the instance and start working with your software. Some of these steps will be similar to what you did in Lesson 1, but please follow them closely.

  1. Log in to the AWS Management Console, navigate to the EC2 region where you built your site in Cloud Formation (probably N. Virginia), and click Security Groups.

    When Cloud Formation created your EC2 instance, it also created a security group for that instance. You might remember from Lesson 1 that you need to add a rule to this security group allowing Remote Desktop connections through port 3389.
  2. Click the name of the security group that Cloud Formation created. The name will have the format arcgis-<site name>.
  3. In the lower panel, click the Inbound tab and click the Edit button.
  4. If it's not already there, click Add Rule, and add a rule of type RDP.
  5. Choose My IP from the Source dropdown list, and click Save. With some Internet service providers, your IP address changes frequently, so you may need to repeat this procedure if you ever find that remote connections are failing, or allow all IPs with 0.0.0.0.
  6. Open Windows Remote Desktop Connection.
  7. In Remote Desktop Connection, click the Options button > Local Resources tab > More button and ensure that the box for Drives is checked, then click OK. This will permit you to copy data from your machine on to the remote machine (in this case, your Amazon EC2 instance).
  8. Log in to the AWS Management Console, and follow the procedure you learned in the previous lesson to allocate a new elastic IP address (using Elastic IPs > Allocate New Address).
  9. Associate your new elastic IP address with the EC2 instance that Cloud Formation created (remember, you can do this via Actions > Associate Address).

    The above step is necessary, because instances in a VPC by default are not visible for login through remote desktop connections on the public web. Associating an elastic IP with your instance gives you an address you can log into. This is why you see a warning when you associate your address; it's telling you that your instance will be visible for login (by someone who has the name and password).
     
  10. In the AWS Management Console, click the Instances link on the left side. From the list of instances, right-click your instance name and click Get Windows Password.
  11. Browse to the key pair file (.pem) that you saved in Lesson 1 and decrypt the password, just like we did in the previous lesson.
  12. In Remote Desktop Connection, under the General tab, type or paste the elastic IP address of your instance into the Computer input box.
  13. In the User name input box, type Administrator, then click the Connect button.
  14. In the Password input box, carefully type or paste the password you decrypted, then proceed with logging in.

    Notice that Amazon gives you a pretty strong password for this instance, but it's not one you're liable to remember easily. You should change the administrator password once you've logged in.
  15. On your instance (not your own computer), click Start (Windows button) > Administrative Tools > Computer Management and follow the same steps we did in the previous lesson to change the Administrator password. Go back and look at the steps if necessary. Do not skip this step, because you want to have a password you can remember and not the real complex one supplied by Amazon.

    The password rules are fairly stringent; please see them in the image in Figure 2.1, below.

     Screen capture of the Password Security Settings box with password rules.
    Figure 2.1: Password Security Setting

Disabling IE ESC

As a security precaution, it's usually not a good idea to go around browsing the web from your production server machine. To do so is to invite malware intrusions onto one of your most sensitive computers. The operating system on your instance, Windows Server 2012, enforces this by blocking Internet Explorer from accessing most sites. This is called IE Enhanced Security Configuration (ESC).

IE ESC gets burdensome when you're using the server solely for development or testing purposes like we are. To smooth out the workflows in this course, you'll disable IE ESC right now and leave it off for the duration of the course.

  1. Start Windows Server Manager by typing its name from the Windows Start Menu.
  2. Click Local Server.
  3. Scroll over to the right and find IE Enhanced Security Configuration. Click the On link to access the options for turning it off.
  4. Select Off for both users and administrators and click OK.

You're now ready to begin working with your EC2 instance.

Remember that if you are going away for more than an hour, you should stop your instance using in the AWS Management Console. (Only stop your machine Instance. Leave your storage volume(s) and Elastic IPs as they are. Deleting them may require that you completely rebuild your virtual machine.)