Ansys Gateway powered by AWS: Onboarding Overview and Prerequisites

- November 7, 2022 at 10:50 pm
  Ashwini Kumar
  Ansys Employee
  / Overview of Setup Process
  To connect your local network to Ansys Gateway powered by AWS, you will enter information in the wizard and perform tasks in your local IT environment, AWS Cloud, and Ansys Gateway powered by AWS.
  / How Ansys Gateway powered by AWS works
  Here is an overview of how everything connects and works together.
  
  / Prerequisites
  This onboarding wizard is configured for customers with a single domain only. If your email/authentication/active directory domains are different, please contact Ansys support. This guide assumes that you have the following already set up:
  
  / Prepare your local IT environment
  To prepare for connecting to Ansys Gateway powered by AWS, you must have the following set up in your local environment:
  
  1. A local server hosting Active Directory
  Requirements:
  - LDAP for querying the AD and authenticating access to it
  - AD service account with permissions to:
    Join a machine to the domain
    Create groups and machines within a specified Organizational Unit (OU). Permission to create groups can be removed after successful onboarding.
    Read users in the groups within the specified Organizational Unit.
  To Do: Set up an Organizational Unit (OU)
  - You must create an Organizational Unit (OU) to be used for Ansys Gateway operations.
  - On the server hosting Active Directory (AD), open Active Directory Users and Computers.
  - From the View menu, select Advanced Features.
  - Right-click your domain and select New > Organizational Unit.
  - Specify a name for the Organization Unit that identifies it as OU for Ansys Gateway powered by AWS (for example, "AGW"). Make note of the specified name as you will need it later.
  2. A server to host the Ansys Gateway powered by AWS AD Connector service
  Have a server ready or create and certify a server to host the Ansys Gateway powered by AWS AD Connector proxy service. The server can be an on-premises machine or VM in AWS Cloud which meets the requirements below.
  Requirements:
  - Should be close to the server hosting Active Directory to ensure fast communication with that server
  - Operating System: Windows Server 2016 or later
  - Port 16402 incoming must be open between the Ansys Gateway powered by AWS AD Connector server and the VPC
  - Ports 389 (LDAP) and 3268 (GC) outgoing must be open between the Ansys Gateway powered by AWS AD Connector server and Active Directory
  - Port 443 outgoing must be open between the Ansys Gateway powered by AWS AD Connector server and the Internet
  - Certificate specifying the hostname of the Ansys Gateway powered by AWS AD Connector Service and connectivity to validate the certificate
  - Account with Local Admin rights
  Note: You will download and install the Ansys Gateway powered by AWS AD Connector service in a later step.
  
  / Prepare your AWS environment
  To prepare for connecting to Ansys Gateway powered by AWS, you must have the following set up in AWS:
  1. A Virtual Private Cloud (VPC) for each region in which you want to use Ansys Gateway powered by AWS
  A Virtual Private Cloud (VPC) is a pool of shared resources allocated within AWS Cloud. Each VPC is associated with a specific region. This determines the AWS data center that will provision the resources. Learn more about Amazon VPC.
  Requirements for each VPC:
  - From the VPC to the Internet:
    Port 443 outbound to enable communication to the Ansys Gateway powered by AWS Control Plane and the virtual machines
    Port 22 inbound and port 443 inbound to facilitate connections to the virtual machines
  - From the VPC to another VPC:
    Port 445 inbound/outbound [Optional for SMB Connectivity]
  - From the VPC to the Ansys Gateway powered by AWS AD Connector Service:
    Port 16402 outbound to enable communication with the Ansys Gateway powered by AWS AD Connector Service
  - Standard connectivity to Active Directory including port 389 for domain join connectivity
  - At least one subnet
  - DNS connectivity
  - AWS EC2 Service Quotas for provisioning instances in the associated region
  2. Established connection between local network and VPC
  There must be a secure and private connection between your local network and the AWS Virtual Private Cloud. AWS recommends site-to-site VPN or Client VPN. Learn more about Amazon Virtual PrivateNetwork.
  
  Updated Nov 7, 2022
- December 17, 2022 at 7:46 am
  
  Eduard Van Niekerk
  Subscriber
  
  Where can I find the remaining steps to be completed in AWS (e.g. IAM Role permissions)
- December 19, 2022 at 6:19 am
  
  Masataka Nakamura
  Subscriber
  
  Hi Eduard, The remaining steps for administrator can be found in the Setup Process section of the link below. Could you please confirm it.
  
  Requirements for Integrating with Ansys Gateway powered by AWS

Viewing 2 reply threads

The topic ‘Ansys Gateway powered by AWS: Onboarding Overview and Prerequisites’ is closed to new replies.

Ansys Innovation Space

Boost Ansys Fluent Simulations with AWS

Computational Fluid Dynamics (CFD) helps engineers design products in which the flow of fluid components is a significant challenge. These different use cases often require large complex models to solve on a traditional workstation. Click here to join this event to learn how to leverage Ansys Fluids on the cloud, thanks to Ansys Gateway powered by AWS.

Earth Rescue – An Ansys Online Series

The climate crisis is here. But so is the human ingenuity to fight it. Earth Rescue reveals what visionary companies are doing today to engineer radical new ideas in the fight against climate change. Click here to watch the first episode.

Ansys Blog

Subscribe to the Ansys Blog to get great new content about the power of simulation delivered right to your email on a weekly basis. With content from Ansys experts, partners and customers you will learn about product development advances, thought leadership and trends and tips to better use Ansys tools. Sign up here.

Trending discussions