Deploy Portal for ArcGIS on AWS
Esri Amazon Machine Images (AMIs) have Portal for ArcGIS and ArcGIS Web Adaptor installed. You can configure these on an ArcGIS Server AWS instance.
The following are the general steps for getting Portal for ArcGIS running on AWS.
Tip:
Alternatively, you can use Esri sample CloudFormation templates to deploy a web GIS site that includes Portal for ArcGIS on Amazon Web Services.
- Launch an Amazon Web Services instance from an ArcGIS Server AMI.
- Create an Amazon Elastic IP and associate it with the instance.
- Optionally set up CNAME mapping to create a more user-friendly Domain Name System (DNS) hostname.
- Create a remote connection to the instance.
- Start Portal for ArcGIS.
- On a Windows instance, start the Portal for ArcGIS service from the Windows Services panel.
- On an Ubuntu instance, log in as the arcgis user and run startportal.sh in /arcgis/portal to start Portal for ArcGIS.
- Run the Portal for ArcGIS Software Authorization wizard to license your portal.
- Connect to the portal and create the initial administrator account. This account is required when registering the portal with ArcGIS Web Adaptor.
To connect to the portal from a remote machine to create the initial administrator account, the portal URL is in the format https://<fully qualified machine name>:7443/arcgis/home. On the local machine, you can use the URL https://localhost:7443/arcgis/home/.
- Enable HTTPS on at least the Web Adaptor directory, using a CA-signed certificate.
The certificate is issued to the public DNS hostname for the Elastic IP or the CNAME DNS hostname that maps to the Elastic IP.
Note:
Do not use a self-signed certificate when running Portal for ArcGIS.
- Configure the Web Adaptor with Portal for ArcGIS. You can do this from a web browser on the local machine or from command line on Ubuntu.
- If running from a web browser, open the ArcGIS Web Adaptor configuration page.
The Web Adaptor registration page opens automatically when you install; however, change the URL to use the elastic IP of the AWS instance or the CNAME DNS hostname where ArcGIS Web Adaptor is installed. For example, change the URL from https://localhost/arcgis/webadaptor to https://<Elastic IP>/arcgis/webadaptor or https://<CNAME DNS hostname>/arcgis/webadaptor.
- Use the elastic IP or CNAME DNS hostname in the URL rather than the portal machine name in the Portal URL. For example, type https://<Elastic IP>:7443/arcgis or https://<CNAME DNS hostname>:7443/arcgis.
- If running from a web browser, open the ArcGIS Web Adaptor configuration page.
- Start an ArcGIS Server instance from the ArcGIS Server AMIs.
- Associate an Amazon Elastic IP with the instance.
- Optionally set up CNAME mapping to create a more user-friendly DNS hostname.
- Create a remote connection to the instance.
- Authorize ArcGIS Server.
- Create an ArcGIS Server site.
- Enable https on the ArcGIS Server site.
- Install a Web Adaptor for your ArcGIS Server site.
- Enable HTTPS on at least the Web Adaptor directory, using a CA-signed certificate. The certificate is issued to the public DNS hostname for the Elastic IP or the CNAME DNS hostname that maps to the Elastic IP.
Note:
Do not use a self-signed certificate for the ArcGIS Server site federated with Portal for ArcGIS when running on AWS.
- Configure the Web Adaptor with the ArcGIS Server site and Enable administrative access to your site through the Web Adaptor.
Change the Web Adaptor registration page URL and GIS Server URL to include the elastic IP or CNAME DNS hostname rather than the ArcGIS Server machine name used for the Web Adaptor and ArcGIS Server AWS instance.
- Set the portal's system properties.
- Log in to the ArcGIS Portal Directory. On AWS, the URL is in the format: https://<Elastic IP>/arcgis/portaladmin or https://<CNAME DNS hostname>/arcgis/portaladmin.
- Click System > Properties > Update Properties.
- In JSON format, set the portalLocalHostname and privatePortalURL properties to the public DNS or CNAME DNS hostname of the portal's AWS instance.
For example, for a site with a CNAME DNS hostname of awsportal.esri.com, set
{"localHttpPort":"80","localHttpsPort":"443", "portalLocalHostname" : "awsportal.esri.com", "privatePortalURL" : "https://awsportal.esri.com/arcgis" }
- Click Updated Properties.
The portal will restart when you click Updated Properties.
- Federate the ArcGIS Server site with your portal. Use the ArcGIS Server site public DNS hostname for the Elastic IP or the CNAME DNS hostname for the ArcGIS Server URL and the ArcGIS Server private URL.
The following is an example URL: https://awsportal.esri.com/arcgis.
Make sure your Amazon security groups allow communication between the two AWS instances through the Web Adaptor ports, 80 and 443.
- If you configured ArcGIS Data Store with your ArcGIS Server, you can set your ArcGIS Server site as the portal's hosting server.
Optionally federate an ArcGIS Server site with your portal. The steps below federate an ArcGIS Server site running on a different AWS instance. If your ArcGIS Server runs on the same AWS instance as your portal, use the same web server (such as IIS) with the same CA-signed certificate.
Remember, if you stop and start the AWS instance running the portal, reassociate your Elastic IP with the AWS instance.