Design principles

Refer to design principles in the Well-Architected Framework Security Pillar for core security concepts. Additionally, consider these Microsoft-specific security aspects:

Microsoft-specific security configurations: Use Microsoft security baselines, Active Directory Group Policies, and Windows-specific security features like Windows Defender, AppLocker, and BitLocker for enhanced workload protection.
Identity integration patterns: Implement proper integration between AWS IAM and Microsoft Active Directory services (either AWS Managed Microsoft AD or self-managed AD) for secure authentication across hybrid environments.

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

Definitions

Workload security