Create an Amazon AWS Account

LightSail is a very affordable (almost free depending on usage) cloud computing platform that is great for running TikiWiki for personal projects or small collaboration groups.
Another aspect of LightSail is that it is geared for easy to setup and maintenance with just the bare amount of features that you need to run a professional looking TikiWiki.

AWS Lightsail Requirements

Given the high security requirements of Amazon AWS you will need a virtual Two Factor Authentication device. Google provide a good virtual Two Factor Authentication app on the Play store and the App Store

AWS Account Creation

  • Go to the AWS account setup page here.
  • After email verification you then use the AWS sign-in page here.
AWS Login
AWS Login

  • When the AWS account page opens click on your account name in the top right corner.
  • Next click Security Credentials.

aws security console
aws security console

  • Next click the Multi-factor authentication (MFA) sliding section.
AWS MFA Setup
AWS MFA Setup

  • Next click MANAGE to setup your virtual MFA device. Once your virtual MFA device can generate codes as shown you will be able to login with increased security.

Google virtual MFA device
Google virtual MFA device

  • Back in the AWS Management Console select your preferred local data-center.

AWS LightSail data-center
AWS LightSail data-center

  • Now do a service search and type in "Lightsail", when the Lightsail icon appears click it to start the setup of the next stage.
AWS Lightsail Service Search
AWS Lightsail Service Search

  • You are then presented with instance creation page, click "Create Instance".
Lightsail instance creation
Lightsail instance creation

  • From this point forward its up to you to go with your preferred configuration.

You can setup a linux instance by following one of the many great tutorials on the AWS Lightsail website.

  • Due to the lower compute power of the Lightsail instances your TikiWiki database will have to be placed in a separate database instance that is easy to configure when following the AWS Lightsail tutorials.
  • To secure TikiWiki you should configure your web-server to use SSL encryption when serving content to clients.

MySQL SSL

  • Given that the TikiWiki web-server and database server are not on the same virtual machine the contents of the TikiWiki database will be traversing Amazon's AWS data-center in the clear so you need to encrypt this web-server to database connection with SSL.
  • Get your preferred AWS Lightsail certificate from here.
AWS LightSail root certificate
AWS LightSail root certificate

  • When you have everything configured to your satisfaction in TikiWiki and all seems to be working, you should then encrypt the web-server to database connection by placing the certificate file "rds-ca-2019-root.pem" you downloaded from here into the cert sub-folder on your web-server.
Lightsail root CA file location on your web-server instance.
Lightsail root CA file location on your web-server instance.
  • END