Understanding AWS Managed Microsoft AD (Hybrid Edition)

AWS Managed Microsoft AD (Hybrid Edition) allows you to extend your existing Active Directory to the AWS Cloud with AWS Managed Microsoft AD. This feature makes it easier to move your AD–dependent workloads to AWS, adopt AWS services, and increase your Active Directory redundancy. AWS will periodically run directory assessments on your hybrid directory which you can view in the AWS Directory Service console.

A hybrid directory in AWS Directory Service connects your existing Microsoft Active Directory with AWS Directory Service for Microsoft Active Directory (AWS Managed Microsoft AD). This creates an integrated identity environment that spans on-premises, AWS, and multi-cloud infrastructure, allowing you to maintain a single source of identity while extending your directory services to AWS.

A hybrid directory configuration provides several important capabilities:

Extension of self-managed AD to the AWS Cloud without needing to establish a trust relationship
Seamless authentication and authorization across environments using existing Active Directory credentials
Consistent user credentials and group memberships across both your AD environments
Centralized management of AD access policies and permissions

Topics

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

AWS Managed Microsoft AD

Hybrid directory prerequisites