New Install: AWS

Last Updated: April 07, 2026

This topic provides the requirements and steps to create your Virtual Appliance using an AMI in Amazon Web Services (AWS).

Requirements

Ensure the installation requirements are completed before spinning up your Virtual Appliance. For more details refer to Virtual Appliance Installation.

  • Contact your Vasion representative for access to the Virtual Appliance AMI.
  • Access to Amazon Web Services (AWS).
  • Knowledge of your AWS account number. (Located in the username dropdown in AWS).

Create Virtual Appliance

1. Copy the AMI

  1. Go to the Amazon Elastic Computer Cloud (EC2) dashboard in AWS.

  2. In the Images dropdown, select AMIs.

    AMI option within the Images drop-down in the AWS EC2 Dashboard.

  3. Set your AWS region to the one provided by your Vasion representative.

    US East (Ohio) option in the AWS region menu options.

  4. Select Private images in the AMI list screen.

    Private images option displayed in the AWS images sort drop-down.

  5. Locate the provided AMI in the list.
  6. Right-click the image and select Copy AMI.

  7. In the Copy AMI modal, select your destination region then select Copy AMI.

    The copy process can take several minutes to complete.

  8. Once the copy completes, locate the AMI and rename or tag it as needed.

    The copied AMI will display a different AMI ID now that it is in your region. However, the AMI name will stay the same.

2. Configure AMI Network Settings

  1. Right-click on the AMI and select Launch Instance from AMI.
  2. Give the instance a unique name.
  3. In the Instance Type section select from the available options that meet at least the minimum requirements. See Minimum System Requirements.
  4. In the Key pair (login) section select the desired option from the dropdown.
  5. In the Network settings section select Edit and choose the desired Virtual Private Cloud (VPC) and subnet deployments.
  6. In the Firewall (security groups) section select + Create security group.
  7. Enter a Security group name and description.
  8. Enter the following security group rules.
    1. Type: MySQL/Aurora, Protocol: TCP, Port: 3306, Source: Anywhere.
    2. Type: HTTP, Protocol: TCP, Port: 80, Source: Anywhere.
    3. Type: HTTPS, Protocol: TCP, Port: 443, Source: Anywhere.
    4. Type: Custom TCP, Protocol: TCP, Port: 8000, Source: Anywhere.
    5. Type: Custom TCP, Protocol: TCP, Port: 8080, Source: Anywhere.
    6. Type: SMB, Protocol: TCP, Port: 445, Source: Anywhere.
    7. Type: Custom ICMP - IPV4, Protocol: Echo Request, Port: 8, Source: Anywhere.
  9. The Advanced Network Configuration section is optional.
    1. Dynamic Host Configuration Protocol (DHCP) environments can skip to the next step.
    2. If configuring the Virtual Appliance using a static IP address:
      1. Create a network interface and assign the desired IP address.
      2. Attach the network interface.

3. Launch the AMI

  1. Scroll to the Configure Storage section and ensure there's a minimum of 80 GB. We recommend using an solid state drive (SSD gp3) volume which allows input / output operations per second (IOPS) for the volume.

    Do not add the additional data volume at this time. You will add that in a later step..
  2. Scroll to the Advanced Details section and expand it.

  3. Paste the following code into the bottom of the User Data field.

    Set the DOCKER_NETWORK IP address to the desired private TCP/IP network with a /20 or lower.

    Copy Code 
    #!/bin/bash -x
    DOCKER_NETWORK="172.16.0.0/16"
    echo "*** cloud-init script begin ***"
    # Wait for Docker to become available
    until systemctl is-active docker >/dev/null 2>&1
    do
      echo "Waiting for Docker to become available..."
      sleep 5
    done
    echo "Setting Docker network to $DOCKER_NETWORK..."
    set-network "$DOCKER_NETWORK"
    echo "*** cloud-init script end ***"
  4. Select Launch Instance.
  5. Select View All Instances.
  6. Wait for the Virtual Appliance to finish launching.

4. Create the Data Volume

  1. In the left-side menu expand Elastic Block Store and select the Volumes option.

    Instances window with an arrow pointing to the Volumes option in the AWS Elastic Block Store left-side menu section.

  2. Select Create Volume.
  3. Select the Volume Type. We recommend using an solid state drive (SSD gp3) volume which allows input / output operations per second (IOPS) for the volume.
  4. Set the Volume Size to at least the 50 GB minimum. See Minimum System Requirements and adjust as needed for your environment.
  5. Set the Availability Zone to the same zone as your Virtual Appliance instance.
  6. Optional: Enable Encryption and add your desired master key.
  7. Select click to add a Name tag and give your volume a name.
  8. Select Create Volume.
  9. Select Close after the Volume Created Successfully message displays.

Create Volume window with an arrow pointing to the Click to add a Name Tag link in the lower middle.

5. Attach the Data Volume

  1. Locate the newly created volume in the list.

  2. Right-click the volume and select Attach Volume.

    Created volume window in AWS, with the right-click menu expanded to display the Attach Volume option.

  3. In the Instance field, enter the instance ID for the Virtual Appliance you just created.

  4. Enter /dev/sdp in the Device field.

    Attach Volume pop-up with the Device field highlighted and showing the /dev/sdp value.

  5. Select Attach.
  6. Select Instances and return to the Virtual Appliance instance.
  7. Select the instance Details tab and copy the Private IPV4 address.

6. Launch the Virtual Appliance Wizard

The steps below are for creating new Virtual Appliance instances. If you are upgrading from an older host build, reference Host Upgrade.

  1. In your preferred, supported browser, paste or enter the Virtual Appliance IP Address including port 8080. Example: 192.168.10.20:8080

  2. Once the setup wizard displays, select Let's Do This.

    VA configuration wizard with the orange Lets do this button in the lower middle.

  3. Select the Storage Type drop-down and select VM-Attached Virtual Disk.

    Orange Continue button highlighted in the upper right of the VA wizard Configure Storage window.

  4. Select Format Attached Storage. When the attached disk is ready, select Continue.

  5. Select Start a New Instance.

    VA Wizard showing two button options, Start a New Instance, or Upgrade my Current Instance.

  6. On the General Settings tab:

    1. Add the domain name.

    2. Enter a Shared Storage Password.

      Passwords can contain any alphanumeric character (a-z, A-Z, 0-9), the following special characters (%^()_-+={}[]<>,.;), and up to 128 characters.

    3. Upload your license file.
    4. Upload your SSL certificate and key.

    Document and save the Shared Storage Password. It is only available during the web portion of the new Host configuration steps.

    General settings tab in the wizard showing the domain name, shared storage password, and upload location for the license file, SSL certificate, and SSL Key.

  7. Select Continue when finished.

  8. On the Setup Database tab:

    1. Select the Database Type. The internal database displays by default.

    2. Enter a Password.

      Passwords can contain any alphanumeric character (a-z, A-Z, 0-9), the following special characters (%^()_-+={}[]<>,.;), and up to 128 characters.

    Database type drop-down with two database options. One for using the internal VA database, or an external MySQL8+ database.

  9. Select Continue, then select Finish Setup.

    VA Setup wizard window with an arrow pointing to the Finish Setup button in the lower middle.

    Please do not refresh the page during the installation procedure.

  10. A new "Thank You" browser window will open when the installation is complete. This window can be closed as needed.

7. Initial Access & Root Account

After the installation completes, the Admin Console opens automatically in the browser. A root account user must be created to access the instance.

  1. When the Admin Console login screen displays, enter the desired credentials for the root account.
  2. Once logged in, review and accept the License Agreement.
  3. At this point the instance creation and initial access are complete, and you are ready to set up printers, folders, and other features.