Elastic Cloud Gate

AWS Blog

How to setup RRAS SSTP VPN on AWS VPC with Active Directory Authentication – Step by Step – Part 1

In this article we will explain step by step how to setup Windows RRAS SSTP VPN on AWS VPC with Active Directory Authentication.

Part 1 – Setup VPC
Part 2 – Launch EC2 Instance for Active Directory Server and RRAS Server
Part 3 – Setup Active Directory / Domain Controller
Part 4 – Setup RRAS
Part 5 – Configure Active Directory Certificate Service
Part 6 – Configure RRAS
Part 7 – Adjust VPC Configuration
Part 8 – User Computer Configuration

Part 1 – Setup VPC

Create VPC

1. From AWS console go to VPC
2. Click Start VPC Wizard

AWS VPC

3. Select VPC with Public and Private Subnet and click Select

AWS VPC

4. Make configuration of IPs based on the preferences and click Create VPC

AWS VPC

Add Security Group for NAT Server

1. From EC2 click Security Group and then Create Security Group

AWS VPC

2. Enter name e.g. NAT, from VPC list select VPC created in previous steps
3. Add rule allow all traffic from private subnet – in our case 10.20.2.0/24; click Create

AWS VPC

4. Go to EC2 Instances list
5. Select the NAT server – should be the one without name – and from the Actions menu select Networking->Change Security Groups

AWS VPC

6. Check the NAT (or whatever you called the new security group) and click Assign Security Group

AWS VPC

7. Also for better identification you can set the name for NAT server

AWS VPC

, ,

Leave a Reply