Performing the following steps takes approximately 15 minutes.
Steps
Log in to the AWS Management Console and go to the
CloudFormation service.
As a best practice, Dell Technologies recommends using multifactor authentication on your AWS account. For more information, see
https://aws.amazon.com/iam/features/mfa/.
Click
Stacks > Create stack. Then click
With new resources (standard).
The
Create stack pane opens.
Under
Prepare template, enable the
Template is ready option.
Under
Specify template > Template source, do the following:
If the
CloudFormation template has been shared with you over S3, enable
Amazon S3 URL. Then, enter the S3 URL for
CloudFormation template and click
Next.
If the
CloudFormation template has not been shared with you over S3, enable
Upload a template file. Then, click
Choose file and click
Next.
The
Specify stack details pane is displayed.
Enter a stack name, complete the parameter fields that are described in the following table, and then click
Next:
Table 1. Parameter fields for creating a stackThe table lists the fields in the CloudFormation template that are used to create the stack.
Field
Description
Prefix Configuration
Enter a prefix for the AWS name tag of the resources that this stack creates. The limit is 200 characters.
VPC Configuration
Enter the Classless Inter-Domain Routing (CIDR) range for creation of the
AWS virtual private cloud (VPC).
Subnets Configuration
Enter the CIDR range for the private subnet for the
Cyber Recovery jump host. The jump host is deployed on this subnet. The subnet acts as the gateway between the production workstation and the
Cyber Recovery and
DD subnet in AWS.
Enter the CIDR range for the private subnet for the
Cyber Recovery management host and DDVE.
Key Pair Configuration
From the drop-down list, select a key pair from your AWS account to access:
The jump host EC2 instance created in this stack
The
Cyber Recovery management host EC2 instance created in this stack
The DDVE EC2 instance created in this stack
Vault PowerProtect DD Configuration
From the drop-down list, select the DDVE model.
From the drop-down list, select the number of DDVE metadata disks.
Production Network Information
Enter the CIDR range of the clients in the production deployment that require access to the jump host in the VPC. This value can also be single IP address, that is, it uses a single netmask of /32.
Provide tags.
Tags typically include key value pairs such as
Name:CR-AWS.
NOTE:Do not use tags that start with
cr because the
Cyber Recovery software uses customs tags to define resources.
Leave the Permissions and Advanced options at the default values and then click
Next.
Review your input and click the checkbox to provide an acknowledgment.
When you are satisfied with your input, click
Create a stack.
You can monitor the progress of the stack creation, which takes a few minutes. After the stack is created, view details in
CloudFormation by clicking the
Resources,
Events, and
Output tabs.
Go to the created resources in the AWS UI to validate that they were created properly.
Connect your site-to-site VPN gateway to the jump host private subnet.
When the VPN is in place, connect to the jump host by using the Remote Desktop Connection.
Obtain the Windows password from the AWS UI:
Select the jump host instance.
Click
Actions > Security > Get Windows Password.
Follow the prompt to upload the key provided during the
CloudFormation deployment.
This substep decrypts the password.
Copy the decrypted password.
To follow AWS best practices, change this password when you are logged in to the jump host.
Connect to the private IP address that is assigned to the jump host instance using the username
administrator and the password that you copied in the previous step.
You can find the IP address in the
Output tab in the
CloudFormation UI or in the EC2 UI for that instance.
Copy the private key for the
Cyber Recovery host to the jump host:
NOTE:The private key is the key pair you specified during the
CloudFormation deployment.
In a text editor, open the key pair on your production workstation.
Copy the entire contents in the text editor.
On the jump host, create a file and paste the contents from the text editor.
Save the file using the same file name and extension as the key pair on the production host.