Checklist: Creating an AWS Deployment
The complete process of deploying on AWS includes the following steps, which should be performed in the listed order. Each of these steps is explained in the following sections.
|
Task |
See... |
---|---|---|
![]() |
Ensure that your AWS environment is ready for deployment |
|
![]() |
Create and configure the AWS Virtual Private Cloud | Create the Virtual Private Cloud |
![]() |
Create two security groups, one for the bastion host and one for intra-VPC connectivity | Creating Security Groups |
![]() |
Create the IAM role for Elastic Kubernetes Service (EKS) | Creating the IAM Roles in AWS |
![]() |
Prepare the bastion host, which you will use for access to the AWS deployment environment | Creating and Configuring the Bastion |
|
Task |
See... |
||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
![]() |
Ensure that your AWS environment is ready for deployment |
|||||||||||||||||||
![]() |
Prepare your AWS Deployment environment
|
|||||||||||||||||||
|
Transfer the product images to the Elastic Container Registry (ECR) |
|||||||||||||||||||
|
(Conditional) If you plan to deploy Intelligence or Recon, install the ArcSight Database in AWS |
|||||||||||||||||||
![]() |
(Conditional) If you plan to deploy Intelligence, configure settings for Elasticsearch in AWS |
(Conditional – Intelligence) Configuring Settings for Elasticsearch in AWS | ||||||||||||||||||
|
Install ArcSight capabilities
|
|||||||||||||||||||
|
Configure the Load Balancer to serve as the single point of contact for clients
|
|||||||||||||||||||
![]() |
Post deployment configurations
|
|||||||||||||||||||
|
Enable the ArcSight products application (pod) logs in AWS, including FluentD for logging the cluster functionality (Cloudwatch) |
|||||||||||||||||||
|
Performing Post-deployment Configuration |
Post-deployment Configuration | ||||||||||||||||||
|
Integrating the Platform Into Your Environment |
Integrating the Platform Into Your Environment |