Setting up an Empower AMI

By default, an Empower AMI is configured to

• listen on port 5000 (http://<your instance>:5000)
• use a local Postgres 9.6 database (configured for an instance with 8 GB of RAM)
• handle user authentication internally

This document describes additional configuration options for the Empower AMI.

Configuring Postgres for available memory

If you create an instance of the Empower AMI with less than 8 GB of memory, Postgres may be unable to start until you've reconfigured it to use less memory.  (In such a case, you'll likely see an 'Invalid parameter' message displayed on the login page.)  Likewise, If you create an instance with more than 8 GB of memory, Postgres may not take advantage of it.   In either case:

1. SSH into your AWS instance with

   ssh -i <Your AWS key.pem> ec2-user@<your instance>

2. From the command line, run

   setup_postgres

Configuring Empower to use Oracle

1. Download config-oracle.zip to your local machine and unzip it to a convenient location.
    
   
2. Create and sign into a (free) account on the Oracle Technology Network.
    
   
3. Visit the Instant Client Download for Linux x86 page and select 'Accept License Agreement'.
    
   
4. Download
   • Instant Client - Basic,
   • Instant Client - SQL*Plus,
   • Instant Client - SDK, and
   • Instant Client - Tools
   and copy these files to the same directory as the ones you extracted from config-oracle.zip.
    
   
5. Update the zip file by running

   zip config-oracle.zip *.rpm

6. Copy the modified file to your AWS instance by

   scp -i <Your AWS key.pem> config-oracle.zip ec2-user@<your instance>:

   (Note the trailing colon.)
    
   
7. Connect to your AWS instance (see above) and run the commands

   unzip config-oracle.zip
   ./config-oracle

Configuring Empower to use SQL Server

1. Download config-mssql.zip to your local machine and unzip it to a convenient location.
    
   
2. Download
   • Microsoft ODBC Driver for SQL Server and
   • Microsoft Tools for SQL Server
   and copy these files to the same directory as the ones you extracted from config-mssql.zip.
    
   
3. Update the zip file by running

   zip config-mssql.zip *.rpm

4. Copy the modified file to your AWS instance by

   scp -i <Your AWS key.pem> config-mssql.zip ec2-user@<your instance>:

   (Note the trailing colon.)
    
   
5. Connect to your AWS instance (see above) and run the commands

   unzip config-mssql.zip
   ./config-mssql

You will be prompted (twice) to accept Microsoft's EULA.

Configuring Empower to listen on port 80 (HTTP)

1. Download config-http.zip to your local machine, then copy it to your AWS instance by

   scp -i <Your AWS key.pem> config-http.zip ec2-user@<your instance>:

   (Note the trailing colon.)
    
   
2. Connect to your AWS instance (see above) and run the commands

   unzip config-http.zip
   ./config-http

3. If necessary, add port 80 (HTTP) to the security group of your instance.

You will now be able to connect to Empower using http://<your instance>/empower/.  (Note the trailing slash.)

Configuring Empower to listen on port 443 (HTTPS / SSL)

1. Download config-https.zip to your local machine.
    
   
2. Copy your SSL key and certificate files to the folder containing config-https.zip.
    
   
3. Extract empower.conf from the zip:

   unzip config-https.zip empower.conf

   and edit it as indicated (replace your-site as appropriate).
    
   
4. Update the file by running

   zip config-https.zip empower.conf <your-site>.key <your-site>.crt

5. Copy the modified file to your AWS instance by

   scp -i <Your AWS key.pem> config-https.zip ec2-user@<your instance>:

   (Note the trailing colon.)
    
   
6. Connect to your AWS instance (see above) and run the commands

   unzip config-https.zip
   ./config-https

7. If necessary, add port 443 (HTTPS) to the security group of your instance.

You will now be able to connect to Empower using https://<your-site>/empower/.  (Note the trailing slash.)

Configuring Empower to use SAML

1. Complete the steps above to configure Empower to listen on port 443.
    
   
2. Download config-saml.zip to your local machine, then copy it to your AWS instance by

   scp -i <Your AWS key.pem> config-saml.zip ec2-user@<your instance>:

   (Note the trailing colon.)
    
   
3. Connect to your AWS instance (see above) and run the commands

   unzip -o config-saml.zip
   ./config-saml

You will now be able to connect to the SimpleSAMLphp installation page at https://<your instance>/simplesaml/.  (Note the trailing slash.) Use the information on this page to configure SAML as required by your IdP.

You can also connect to Empower using the test SAML login at https://<your instance>/empower-saml/.  (Again, note the trailing slash.) You be redirected automatically to a SimpleSAMLphp login page; enter one of

Student/stu
Instructor/ins
CourseAdmin/adm

to log in. You will be directed back to Empower where you will most likely see 'EVM 101 is not a valid DSN ...'. This is expected -- SAML is working, but the sample database is not configured by default to use it.