Directory Service

service that works with Microsoft AD

Overview

Microsoft AD

1. Found on any Windows server with AD domain services.

2. Database of objects: User, Accounts, Computers, Printers, File shares etc

3. Centralized security management, create account, assign permissions

4. Object are organized in trees. A group of trees is called forest.

Directory types

AWS managed Microsoft AD

• Create your own AD in AWS, manage users locally.

• Support MFA

• Establish trust connection with on-prem AD.

AD connector

1. Director gateway (proxy) to redirect to on-prem AD

2. Users are managed on the on-prem AD

Simple AD

• AD compatible managed directory on AWS

• Cannot be joined with on-premises AD