Automation Anywhere Cloud Service requires a domain name that acts as the FQDN to access the Control Room. You also require a public certificate from AWS Certificate Manager (ACM) to validate the connection between the Control Room domain name and the CloudFormation stack.

Procedure

  1. Log in to the console of the AWS account as an administrator.
  2. Perform the following steps to create a public hosted zone to request a certificate from ACM.
    1. Go to Route 53 console in the AWS console and perform the following steps.
    2. Select Hosted zone > Create Hosted zone.
      The Create hosted zone page appears.
    3. Enter the domain name that you had entered when creating a private hosted zone in Domain name.
      This domain name acts as the FQDN to access the Control Room. For example, enter aacs.mycompany.com.
    4. Select Public Hosted Zone in the Type.
    5. Optional: Click Add tag to apply tags to hosted zones to help organize and identify them.
    6. Click Create hosted zone to create a public hosted zone.
      The new public hosted zone appears on the Route 53 dashboard. This public hosted zone enables you to validate the certificate using public DNS record.
  3. Perform the following steps to request a certificate from AWS Certificate Manager.
    1. Go to the AWS Certificate Manager portal.
    2. Click Request a certificate to request a certificate from Amazon.
    3. Select Request a public certificate, and click Next.
    4. Enter the FQDN that you entered earlier in Fully qualified domain name.
    5. Optional: Click Add another name to this certificate and enter an alternate name for the domain.
      This option allows you to access the certificate from both domain names.
    6. Select Disable export in Allow export.
    7. Select DNS validation in Validation method.
    8. Select RSA 2048 as encryption algorithm in Key algorithm.
    9. Optional: Click Add tag to apply tags to the certificates to help organize and identify them.
    10. Click Request to request a public certificate
      After processing the request, the ACM console displays the new certificate in the Certificates list. The ACM console also displays the CNAME record for the certificate. You must use this CNAME in the DNS configuration of your domain. If you request a certificate with a name and an additional name, ACM creates two CNAMEs for the certificate.
      Note: If the certificate shows Failed or Validation timed out, delete the certificate and retry again. For more information about troubleshooting certificate requests, see Troubleshooting certificate requests in ACM.
  4. Perform the following steps to create required records and validate the certificate:
    1. Go to Route 53 console.
    2. Select the public hosted zone created earlier and click Create Record.
    3. Enter the CNAME generated earlier in ACM in Record name.
    4. Select CNAME as type in Record type.
    5. Enter the CNAME value generated earlier in ACM in Value
    6. Enter an appropriate timeout value in seconds in TTL.
    7. Select Simple in Routing policy.
    8. Click Create records.
      The Route 53 console creates the record and validates the certificate.
  5. Perform the following steps to delete the public hosted zone and create a private hosted zone with same domain name:
    1. Go to Route 53 > Hosted zones in the Route 53 console.
    2. Select the public hosted zone and then click Delete.
    3. Enter delete as the confirmation message for deletion, and then click Delete.
      The console displays the delete confirmation banner.
    4. Select Create Hosted zone.
      The Create hosted zone page appears.
    5. Enter the domain name that you had entered when creating a public hosted zone in Domain name.
    6. Select Private Hosted Zone in the Type.
    7. Select the region in which your Control Room VPC resides in Region.
    8. Select the Control Room VPC that you must associate with this hosted zone in VPC ID.
    9. Optional: Click Add tag to apply tags to hosted zones to help organize and identify them.
    10. Click Create hosted zone to create a private hosted zone.
      For more information about creating a hosted zone in Route 53 console, see Creating a private hosted zone.
  6. Perform the following steps to create required records and validate the certificate for the private hosted zone:
    1. Go to Route 53 console.
    2. Select the private hosted zone created earlier and click Create Record.
    3. Enter the CNAME generated earlier in ACM in Record name.
    4. Select CNAME as type in Record type.
    5. Enter the CNAME value generated earlier in ACM in Value
    6. Enter an appropriate timeout value in seconds in TTL.
    7. Select Simple in Routing policy.
    8. Click Create records.
      The Route 53 console creates the record and validates the certificate.

Next steps

After you create the private hosted zone, use the domain name to create a CloudFormation stack to provision the required resources.