Esri Amazon Machine Image (AMIs) have the base ArcGIS Enterprise stack installed, including Portal for ArcGIS and ArcGIS Web Adaptor. Launch an instance using an Esri AMI and configure an ArcGIS Enterprise portal.
The following are the general steps for getting Portal for ArcGIS running on Amazon Web Services (AWS).
Tip:
Alternatively, you can use ArcGIS Enterprise Cloud Builder for Amazon Web Services to configure an ArcGIS Enterprise deployment on AWS.
- Download your Portal for ArcGIS license file from My Esri.
- Launch an Amazon Elastic Compute Cloud (EC2) instance from an Esri AMI.
If you have never used this particular AMI before, you must read and accept AWS Marketplace terms before launching an instance.
- Create an Amazon Elastic IP and associate it with the EC2 instance.
- Set up CNAME mapping to create a more user-friendly Domain Name System (DNS) hostname.
- Create a remote connection to the instance.
- Open the hostidentifier.properties file and confirm the preferredidentifier=ip property is uncommented. The file is found in the <Portal for ArcGIS installation directory>\framework\runtime\ds\framework\etc\ directory.
- Start Portal for ArcGIS.
- On a Microsoft Windows instance, start the Portal for ArcGIS service from the Windows Services panel.
- On an Ubuntu Server instance, log in as the arcgis user and run startportal.sh in /arcgis/portal to start Portal for ArcGIS.
- Open the portal website and create the portal.
To connect to the portal from a remote machine, the portal URL is in the format https://<fully qualified machine name>:7443/arcgis/home. On the local machine, you can use the URL https://localhost:7443/arcgis/home/.
- Create the initial administrator account. This account is required when registering the portal with ArcGIS Web Adaptor.
- Import the license file you obtained in step 1.
- Specify the portal content directory.
- Enable HTTPS on at least the ArcGIS Web Adaptor directory, using a CA-signed certificate.
The certificate is issued to the public DNS hostname for the Elastic IP or the CNAME DNS hostname that maps to the Elastic IP.
Note:
Do not use a self-signed certificate when running Portal for ArcGIS.
- Configure ArcGIS Web Adaptor with Portal for ArcGIS. You can do this from a web browser on the local machine or from command line on Ubuntu.
- If running from a web browser, open the ArcGIS Web Adaptor configuration page.
The web adaptor registration page opens automatically when you install; however, change the URL to use the elastic IP of the EC2 instance or the CNAME DNS hostname where ArcGIS Web Adaptor is installed. For example, change the URL from https://localhost/arcgis/webadaptor to https://<Elastic IP>/arcgis/webadaptor or https://<CNAME DNS hostname>/arcgis/webadaptor.
- Use the elastic IP or CNAME DNS hostname in the URL rather than the portal machine name in Portal URL. For example, type https://<Elastic IP>:7443/arcgis or https://<CNAME DNS hostname>:7443/arcgis.
- If running from a web browser, open the ArcGIS Web Adaptor configuration page.
- Start an ArcGIS Server instance from an Esri AMI.
- Associate an Amazon Elastic IP with the instance.
- Optionally set up CNAME mapping to create a more user-friendly DNS hostname.
- Create a remote connection to the instance.
- Authorize ArcGIS GIS Server.
- Create an ArcGIS Server site.
- Install a web adaptor for your ArcGIS Server site.
- Enable HTTPS on at least the ArcGIS Web Adaptor directory, using a CA-signed certificate. The certificate is issued to the public DNS hostname for the Elastic IP or the CNAME DNS hostname that maps to the Elastic IP.
Note:
Do not use a self-signed certificate for the ArcGIS Server site federated with Portal for ArcGIS when running on AWS.
- Configure the web adaptor with the ArcGIS Server site and click Enable administrative access to your site through the Web Adaptor.
Change the web adaptor registration page URL and GIS Server URL to include the elastic IP or CNAME DNS hostname rather than the ArcGIS Server machine name used for the web adaptor and ArcGIS Server EC2 instance.
- Configure an ArcGIS Data Store relational data store with your ArcGIS GIS Server site.
- Set the portal's WebContextURL and privatePortalURL properties. This helps Portal for ArcGIS construct the correct URLs on all resources it sends to the end user.
- Open a web browser and sign in to the ArcGIS Portal Directory as a member of the default administrator role in your portal organization. The URL is formatted https://portal.domain.com:7443/arcgis/portaladmin.
- Click System > Properties > Update Properties.
- On the Update System Properties dialog box, insert the following JSON, substituting your own reverse proxy server or DNS alias URL as seen by users outside your organization's firewall:
{ "privatePortalURL": "https://lb.domain.com/portal", "WebContextURL": "https://lb.domain.com/portal" }
- Click Update Properties.
- Federate the ArcGIS Server site with your portal. Use the ArcGIS Server site public DNS hostname for the Elastic IP or the CNAME DNS hostname for the ArcGIS Server URL and the ArcGIS Server private URL.
The following is an example URL: https://awsportal.esri.com/arcgis.
Make sure your Amazon security groups allow communication between the two EC2 instances through the web adaptor ports 80 and 443.
- Set the GIS Server site as the portal's hosting server.
Federate an ArcGIS GIS Server site with your portal and set it as the portal's hosting server.
The remaining steps configure a hosting server from a GIS Server site running on a different EC2 instance than the portal. If your ArcGIS Server runs on the same EC2 instance as your portal, use the same web server (such as IIS) with the same CA-signed certificate.
Remember, if you stop and start the EC2 instance running the portal, reassociate your Elastic IP with the EC2 instance.