> Commvault SaaS > Virtual Machines > Amazon EC2 > Configuration

Configuring an Access Node for Amazon EC2

You can configure an access node directly, without configuring a workload.

Prerequisites

Before configuring the access nodes, subscribe to the following images (CIS hardened AMIs) on AWS Marketplace:

Enable authcode to Validate CFT

  1. From the Command Center navigation pane, go to Manage > CommCell.

  2. In the General tile, move the Requires authcode for installation toggle key to the right.

  3. Click the authcode and save it in a safe location.

Add Access Node

  1. From the Command Center navigation pane, go to Manage > Infrastructure.

  2. Click the Access nodes tile.

  3. In the upper-right area of the page, click Add.

  4. From the Vendor list, select Amazon Web Services.

  5. From the Deployment type list, select any of the following:

    • Vendor native deployment

      1. From Authentication list, select any of the following:

        • AWS STS AssumeRole (recommended)

        • IAM Role

        • Access keys for IAM users (not recommended)

      2. From the Platform list, select the operating system.

      3. From the Region list, select a region to deploy the access node in.

      4. Click the Launch The CloudFormation Stack link to open the AWS console.

        Note

        If AWS EBS encryption is enabled for your region in your AWS account, to use the stack, you must be a key user for the default encryption key. If you are not a key user for the default encryption key, copy the Launch The CloudFormation Stack link and share it with someone who is a key user, such as your security administrator.

      5. Log on to the AWS console.

      6. Under Parameters, specify the following information:

        1. For EC2 Instance Type, select the type of EC2 instance to use for the access node.

        2. For EC2 Key Pair, select a key pair to use to access the Commvault Cloud access node.

        3. For VPC ID, select an Amazon Virtual Private Cloud (VPC).

        4. For Subnet ID, select a subnet.

        5. For VPC CIDR, select a VPC CIDR.

          Note

          Port 8403 opens on access nodes only when the request comes from the IP ranges that are listed in the VPC CIDR.

      7. Click Create stack.

    • Manual deployment

      1. Based on the OS type, download the access node packages and perform an interactive installation.

      2. Copy the provided Auth code, as it will be required during the installation.

×

Loading...