By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

Multiple users accessing the same Amazon Workspaces

0

Is it possible/legal to have multiple users accessing the same workspace ? Let say I have a booth in an event, and I have 4 employees to man the booth, taking turn according schedule. Do I need to launch 4 workspaces for them or is it ok if I just launch 1 and share the credentials to the employees ?

Topics
End User Computing
Tags
Amazon WorkSpaces
Language
English
Frank Agustinus
asked 4 months ago191 views
2 Answers
1
Accepted Answer

Hello,

Sharing credentials for a single WorkSpace across multiple users might be a little risky due to security concerns and goes against AWS best practices. Each user should have a dedicated workspace

A single-user account can launch multiple WorkSpaces though. So you could launch 4 separate WorkSpaces, one for each employee, and assign them accordingly based on their schedule

You might find these links helpful --

https://docs.aws.amazon.com/workspaces/latest/adminguide/administer-workspace-users.html

https://stackoverflow.com/questions/57570016/can-multiple-users-utilise-the-same-amazon-workspace

https://repost.aws/questions/QUueiEZR5bSHmOIxZApvFxRg/creating-multiple-workspaces-for-a-single-user

https://docs.aws.amazon.com/workspaces/latest/adminguide/create-multiple-workspaces-for-user.html

Thanks

Abhinav Chauhan
answered 4 months ago
0

WorkSpaces have 1:1 mapping so you only get a single set of credentials. You still have these options which are not recommended.

  1. Share the same credentials with multiple users and that will enable them to connect to the WorkSpace but one user at a time. This is a non-complaint and you will never now who made a change.
  2. Use RDP to connect to your WorkSpaces, this is something we don't recommend. We only use RDP when we troubleshoot a WorkSpaces.

What is recommended and is right:

  1. 4 WorkSpaces in Auto-Stop mode for 4 users This way we will not be sharing credentials and following any unconventional way to connect. Auto-Stop will help to save some cost as you mentioned use will be connecting whenever they are at the booth.

  2. Deploy one EC2 instance in public subnet, create 4 local user profiles enable RDP by configuring the security group and NACL rules. This will cost you less as you will be sharing the resource and it requires less admin efforts then creating a WorkSpace however, the instance will be in public subnet exposed to the internet (unless you fine grain security group).

I will choose the EC2 path to save cost by sharing the same machine and only enabling inbound traffic my the public IP address on RDP port 3389 from a single machine.

AWS
AWS-User-6137524
answered 3 months ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content