This paper outlines best practices for implementing a virtual desktop environment using Amazon WorkSpaces. It offers guidance around factors affecting the AWS networking components that must be considered when deploying WorkSpaces.
Best Practices for VPCs and Networking in Amazon WorkSpaces Deployments
Today, many customers want to expand or migrate their desktop infrastructure environment onto AWS. This paper outlines best practices for implementing a virtual desktop environment using Amazon WorkSpaces. It offers guidance around factors affecting the AWS networking components that must be considered when deploying WorkSpaces.
Amazon WorkSpaces is a managed, secure cloud desktop service. Proper network configuration is essential to the successful implementation and ongoing operations of a WorkSpaces environment. As an End User Computing (EUC) service, any variation to the end user’s experience when interacting with a WorkSpaces instance is very visible and can result in a loss of workforce productivity—especially if network connectivity has not been designed in accordance with best practices.
Networking for cloud-delivered desktops, such as Amazon WorkSpaces, should consider many aspects to help ensure that every user enjoys a consistent end user experience that enables them to be productive regardless of how and where they connect from. Considering all the factors that can have a negative influence on a user’s WorkSpaces instance is essential when designing a WorkSpaces environment. While WorkSpaces reduces the number of design decisions that need to be considered compared to a traditional Virtual Desktop Infrastructure (VDI) environment, it is still a customer’s responsibility to ensure that the required networking and access to supporting services and applications is available to support ongoing successful operation of their WorkSpaces environment.
Each WorkSpaces instance, while providing access to a single user’s application portfolio, relies on a number of infrastructure and application services. The inaccessibility of any of these services could impact the end user in a number of ways including:
Initial connectivity through the unavailability of authentication infrastructure or network connectivity
The inability to patch and update the operating system and associated applications
The failure to connect to application servers, ability to connect to internet-hosted applications, etc.
This document describes the fundamental capabilities of the AWS networking portfolio that can be used to deploy an Amazon WorkSpaces environment and explains how these can be used to tailor the environment to different use cases.Download