Managing SVM Microsoft Active Directory configurations

To update SVM Microsoft Active Directory configuration (console)

1. Open the Amazon FSx console at https://console.aws.amazon.com/fsx/.

2. Choose the SVM to update as follows:

   • In the left navigation pane, choose File systems, and then choose the ONTAP file system for which you want to update an SVM.

   • Choose the Storage virtual machines tab.

     –Or–

   • To display a list of all the SVMs available in your AWS account in the current AWS Region, expand ONTAP and choose Storage virtual machines.

3. Choose the storage virtual machine that you want to update.

4. Choose Actions > Update Microsoft Active Directory configuration. The Update Microsoft Active Directory configuration window appears.

5. For Domain join service account credentials, choose Managed in Secrets Manager (recommended) to use Secrets Manager for secure credential management.

   Note

   Using Secrets Manager eliminates the need to store plaintext credentials and provides centralized credential management. For more information, see Storing Active Directory credentials using AWS Secrets Manager.

6. For Secret, choose an existing secret from Secrets Manager that contains your updated domain join service account credentials, or choose Create new secret to create one.

7. Update other Microsoft Active Directory configuration fields as needed for your environment.

8. Choose Update configuration to save the changes.

To update SVM Microsoft Active Directory configuration (CLI)

• To update the Microsoft Active Directory configuration of an FSx for ONTAP SVM, use the update-storage-virtual-machine CLI command with the --active-directory-configuration parameter, as shown in the following example.

  aws fsx update-storage-virtual-machine \
  --storage-virtual-machine-id svm-abcdef01234567890 \
  --active-directory-configuration DomainJoinServiceAccountSecret=secret-arn