Skip to main content

BlastShield Documentation

BlastShield Orchestrator Installation (AWS)

Orchestrator installation in AWS

The BlastShield™ Orchestrator is used to provision and manage all systems in a BlastShield™ network. This includes management of gateways, endpoints, remote users, groups, and policies. The following steps are performed to deploy and install the Orchestrator. Once installed, you will use the Orchestrator to manage and provision all systems within the BlastShield™ Network. Below are the steps to install the Orchestrator:

  1. Launch Orchestrator Instance in AWS.

  2. Onboard the Administrator User.

  3. Connect to the Orchestrator using the BlastShield™ Authenticator app.

Orchestrator installation prerequisites

Before starting, make sure you have the following:

  1. The BlastShield™ Orchestrator AMI for AWS EC2.

  2. A BlastShield™ Orchestrator invitation (.bsi) file.

  3. A registration URL for the Administrator user.

Launch the Orchestrator Instance in AWS

  1. Connect to the AWS EC2 console and Launch the Orchestrator AMI.

    1. Select the AWS EC2 Instance Type "t2.micro" (Note: leave default settings in place).

    2. Leave default settings in place.

  2. Next, provide the Orchestrator Network Invitation file as User Data for the new instance.

    1. Select the As File Radio button from the User Data setting.

    2. Select Choose File to locate and choose the Orchestrator Network Invitation File.

    3. Select Next.

  3. Next, you will be provided the opportunity to modify Storage and Tags.

    1. Leave the Storage settings as default.

    2. Do not add any Tags.

  4. In the Security Group step you will add a rule to the "Configure Security Group" Settings to allow a single UDP port open to the outside. To accomplish this, do the following:

    1. Select Add Rule.

    2. Select Custom UDP Rule as the rule Type

    3. Select UDP as the Protocol.

    4. Enter UDP Port 12345

    5. Select Anywhere as the Source.

    6. When complete, select Review and Launch to go to the Launch step.

  5. Click Launch to launch the Instance. Refer to the following video to watch the process.

Register the Administrator user

To learn how to register the Administrator user, please follow this link: Register the Administrator user with a BlastShield™ network using the registration URL

Connect to the Orchestrator

To learn how to connect to the Orchestrator, please follow this link: Connect to the Orchestrator

In this section: