This repository has been archived by the owner on Oct 4, 2024. It is now read-only.
Allow Subordinate Enterprise CA instances to launch in a Public Subnet #57
Comments
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Right now, the template is forcing the subordinate enterprise CA instance to launch in a private subnet. This is wrong, because in some cases, you need to make the CA reachable over the internet. For example, if you need to support smart card authentication for WorkSpaces, your AD Connector needs to be able to reach the OCSP URL via HTTP over the internet.
CaServerSubnet: !GetAtt VPCStack.Outputs.PrivateSubnet1AID
This line needs to be modified, and a new parameter needs to be selected by the user
The text was updated successfully, but these errors were encountered: