AWS Directory Service
source link: https://aws.amazon.com/directoryservice/?nc2=h_ql_prod_se_ds
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.
Amazon Web Services (AWS)
Learn About AWS Pricing
AWS Free Tier
AWS Pricing Calculator
Optimize Your Costs
Documentation
AWS Customer Enablement
AWS Support
AWS Professional Services
AWS IQ
AWS Training and Certification
AWS Managed Services
AWS re:Post
AWS Events and Webinars
AWS Summit Online
AWS Innovate Online Conference
Online Tech Talks
Public Sector Events
AWS Training and Certification Events and Webinars
AWS Directory Service for Microsoft Active Directory, also known as AWS Managed Microsoft Active Directory (AD), enables your directory-aware workloads and AWS resources to use managed Active Directory (AD) in AWS. AWS Managed Microsoft AD is built on actual Microsoft AD and does not require you to synchronize or replicate data from your existing Active Directory to the cloud. You can use the standard AD administration tools and take advantage of the built-in AD features, such as Group Policy and single sign-on. With AWS Managed Microsoft AD, you can easily join Amazon EC2 and Amazon RDS for SQL Server instances to your domain, and use AWS End User Computing (EUC) services, such as Amazon WorkSpaces, with AD users and groups.
Benefits
Use actual Microsoft Active Directory (AD)
Take advantage of actual Microsoft Active Directory to manage your users, groups, and devices. Use familiar AD administration tools and features, such as Group Policy objects (GPOs), domain trusts, fine-grain password policies, group Managed Service Account (gMSA), schema extensions, and Kerberos-based single sign-on. You can also delegate administrative tasks and authorize access using AD security groups.
Use cases
Give your on-premises AD users federated access to the AWS Management Console and AWS CLI quickly
You can grant your on-premises AD users one-click access to the AWS Management Console and AWS CLI by selecting AWS Managed Microsoft AD as the identity source in AWS Single Sign-On (SSO). This enables your users to sign in with their existing AD credentials, assume one of their assigned roles at sign-in, and to access and take action on the resources according to the permissions defined for the role. An alternative option is using AWS Managed Microsoft AD with AWS Identity and Access Management (IAM) to enable your users to assume an AWS IAM role. To learn more, see the Admin Guide.
Grant your on-premises AD users single-click access to cloud business applications
You can use AWS Managed Microsoft AD with AWS SSO to add SAML identity provider (IdP) capabilities to your AWS Managed Microsoft AD or your trusted domains. Your users can benefit from built-in integrations to many business applications, including Salesforce, Box, and Office 365. You can easily configure single sign-on access to these applications by following step-by- step instructions. AWS SSO guides you through entering the required URLs, certificates, and metadata. To learn more, see the Admin Guide.
Recommend
About Joyk
Aggregate valuable and interesting links.
Joyk means Joy of geeK