Create or delete a convenience workspace - Elastic Desktop Service

A workspace is a collection of environment configurations for cloud desktops. A workspace of the convenience account type is a convenience workspace. This topic describes how to create a convenience workspace.

Create a workspace

The following section describes how to create a convenience workspace.

Log on to the EDS console.
In the left-side navigation pane, choose Desktops and Groups > Workspace.
On the Workspace page, click Create Workspace.

In the Configure Secure Office Network step, configure parameters based on your business requirements and click Next: Configure Account System.

The following table describes the parameters.


Parameter	Description
Region	The region where you want to create the workspace. For more information about the supported regions and limits, see Region.
Name	The name of the workspace. We recommend that you specify a name that is easy to identify. Specify the name as prompted.
IPv4 CIDR Block	The IPv4 CIDR block of the workspace. For more information, see Plan a CIDR block. Important If you want to attach the workspace to a Cloud Enterprise Network (CEN) instance, specify an appropriate CIDR block to prevent overlapping.
Connection Method	The type of the network over which end users can connect to cloud desktops in the workspace from clients. Valid values: Internet: End users can connect to cloud desktops in the workspace from clients only over the Internet. VPC: End users can connect to cloud desktops in the workspace from clients only over a virtual private cloud (VPC). Internet and VPC: End users can connect to cloud desktops in the workspace from clients over the Internet or a VPC. Configure the Connection Method parameter based on your business requirements. Note If you set the Connection Method parameter to VPC, PrivateLink is required. PrivateLink is free of charge. If you set the Connection Method parameter to VPC or Internet and VPC, PrivateLink is automatically activated.
Attach to CEN	Attach the workspace to a CEN instance based on your business requirements. If you select Yes, specify a CEN instance. You can specify a CEN instance that belongs to your Alibaba Cloud account. You can also specify a CEN instance that belongs to another Alibaba Cloud account. Follow the on-screen instructions to proceed. For more information, see Attach a workspace VPC to or detach a workspace VPC from a CEN instance. Note If you set the Connection Method parameter to VPC or Internet and VPC, we recommend that you select Yes for the Attach to CEN parameter. When the on-premises network connects to the cloud over Smart Access Gateway (SAG), Express Connect, or VPN Gateway, make sure that the VPCs are associated with the same CEN instance.

In the Configure Account System step, set the Account Type parameter to Convenience Account and click Create Now.

Delete a workspace

If you no longer need a workspace, you can release the cloud desktop resources in the workspace and delete the workspace.

Limits


Phase	Description
Before you delete a workspace	Only standard workspaces can be deleted. Basic workspaces are created by the system and cannot be deleted. All cloud desktops in the workspace are released. For more information, see Start, stop, restart, and release cloud desktops. The data that you want to retain is backed up. Warning After a workspace is deleted, its resources and data cannot be restored. Proceed with caution.
After you delete a workspace	After a workspace is deleted, its secure office network is automatically deleted. If the secure office network is attached to a Cloud Enterprise Network (CEN) instance, the secure office network is automatically detached from the instance. After a workspace that has Internet access enabled is deleted, the associated Internet access package is automatically deleted.

Procedure

Log on to the EDS console.
In the left-side navigation pane, choose Desktops and Groups > Workspace.
On the Workspace page, click the ID of the workspace that you want to manage.
On the workspace details page, click Delete in the lower part of the page.
In the message that appears, read the note and click Confirm.

What to do next

After you create the workspace, you can view the basic information, network settings, and Apsara File Storage NAS (NAS) file systems of the workspace. You can also configure logon verification for cloud desktops in the workspace.

Procedure:

On the Workspace page, find the workspace that you want to manage.
Note Select the region in which the workspace resides from the Global drop-down list, and enter the ID or name of the workspace in the search box. This way, you can search for the workspace in an efficient manner.

Click the ID of the workspace to go to the workspace details page. The following table describes the information that is provided on the details page of the workspace.


Section	Information	Remarks
Basic Information	In this section, you can view the following basic information of the workspace: the name, ID, account type, status, number of users, and number of existing cloud desktops.	If you want to change the name of the workspace, click the Edit icon to the right of the Name field.
Networks	In this section, you can view the type of the network over which end users can connect to cloud desktops in the workspace from clients and the secure office network of the workspace. You can also view whether the workspace is attached to a CEN instance, and whether the cloud desktops in the workspace can access the Internet. If cloud desktops in the workspace can access the Internet, you can view the allowed peak bandwidth.	In this section, you cannot specify the type of the network over which end users can connect to cloud desktops in the workspace from clients and the peak bandwidth that is allowed for Internet access.
Security	In this section, you can view or specify the method that is used to verify client logons. This section contains the following parameters: Interconnectivity By default, this feature is disabled. If you enable this feature, cloud desktops in the workspace can communicate with each other. MFA By default, this feature is disabled. If you enable this feature, end users must pass the two-factor authentication before the end users can connect to cloud desktops in the workspace. Before an end user can connect to a cloud desktop in the workspace from a client, the end user must enter the correct username and password, and then enter the correct verification code that is generated by a virtual multi-factor authentication (MFA) device, such as an Alibaba Cloud app. SSO By default, this feature is disabled. If you enable this feature, end users can use the trusted entity that is configured for SSO to connect to cloud desktops in the workspace from clients. This way, end users can access all trusted systems after the end users log on to any one of the systems. Client Logon Verification By default, this feature is disabled. If you enable this feature, end users must enter the correct verification code that is sent to the email addresses of the end users when the end users change logon devices. Only end users who pass verification can connect to cloud desktops in the workspace by using new devices. Important This feature is supported only by workspaces whose Connection Method parameter is set to Internet. To prevent verification conflicts, enable only one of the MFA, SSO, and Client Logon Verification features. For example, if you enable the MFA feature, do not enable the SSO or Client Logon Verification feature.
Storage	In this section, you can check whether the workspace is associated with NAS file systems. If the workspace is associated with a NAS file system, you can view the name, ID, and usage of the NAS file system.	If the workspace is not associated with a NAS file system, you can associate a NAS file system with the workspace based on your business requirements. For more information, see Create a NAS file system.