Resetting and enabling an AWS Managed Microsoft AD user's password

Use the following procedure to reset an AWS Managed Microsoft AD user's password to enable their account with AWS Directory Service Data in the AWS Management Console, AWS CLI, or AWS Tools for PowerShell.

Before you begin, complete the following:

Creating your AWS Managed Microsoft AD.
Enable user and group management for Directory Service Data. You can only enable this feature from the Primary AWS Region for your directory. For more information, see Primary vs additional Regions.
You'll need the necessary IAM permissions to use AWS Directory Service Data. To get started, you can use the AWS managed policy: AWSDirectoryServiceDataFullAccess or AWS managed policy: AWSDirectoryServiceDataReadOnlyAccess. For more information, see Directory Service API permissions: Actions, resources, and conditions reference and Security best practices in IAM.
Creating an AWS Managed Microsoft AD user.

AWS Management Console

You can reset an AWS Managed Microsoft AD user's password to enable their account in the AWS Management Console. You can perform this task from either the Directories screen or Directory details screen.

Directories

Open the Directory Service console at https://console.aws.amazon.com/directoryservicev2/.
From the navigation pane, choose Active Directory, and then choose Directories. You're directed to the Directories screen where you can view a list of directories in your AWS Region.
Choose Actions, and then choose Reset user password and enable account.
1. Under User logon name, enter the user logon name for the user whose password you want to reset.
2. Under New password, enter the user's new password.
3. Under Confirm password, enter user's new password again.
After you confirm the user's new password, choose Reset password and enable account.

Directory details

Open the Directory Service console at https://console.aws.amazon.com/directoryservicev2/.
From the navigation pane, choose Active Directory, and then choose Directories. You're directed to the Directories screen where you can view a list of directories in your AWS Region.
Choose a directory. You're directed to the Directory details screen.
Choose Users. The tab shows a list of users in your directory.
Select the user whose password you want to reset.
Choose Actions, and then choose Reset user password and enable account.
1. Under New password, enter the user's new password.
2. Under Confirm password, enter user's new password again.
After you confirm the user's new password, choose Reset password and enable account.

AWS CLI

You can reset an AWS Managed Microsoft AD user's password to enable their account with the AWS Directory Service Data CLI.

Note

This command uses the aws ds namespace.

To reset an AWS Managed Microsoft AD user's password with the AWS CLI

To reset a user's password, open the AWS CLI, and run the following command with your Directory ID, username, and password:


aws ds reset-user-password \
  --directory-id d-1234567890 \
  --user-name "jane.doe" \
  --new-password "your-password"

For more information, see reset-user-password.

PowerShell

You can reset an AWS Managed Microsoft AD user's password to enable their account with AWS Tools for PowerShell.

Note

This command uses the AWS.Tools.DirectoryService module.

To reset an AWS Managed Microsoft AD user's password with AWS Tools for PowerShell

To reset a user's password, open PowerShell, and run the following command with your Directory ID, username, and password:


Reset-DSUserPassword `
    -DirectoryId d-1234567890 `
    -UserName "jane.doe" `
    -NewPassword "your-password"

For more information, see Reset-DSUserPassword.

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

Disabling a user

Creating a group