To deploy and configure Active Roles Synchronization Service in Amazon Web Services (AWS) for managing AWS Managed Microsoft AD, first you must create an AWS Directory Service instance hosting your AWS Managed Microsoft AD instance in the AWS console. For more information on configuring the service in the AWS console, see Setting up AWS Directory Service in the AWS Directory Service documentation.
NOTE: Consider the following when creating the AWS Managed Microsoft AD instance:
-
Make sure that the connectivity requirements listed in Deployment requirements for AWS Managed Microsoft AD support are met.
-
During the procedure, take note of the following values, as they will be required in later procedures:
-
Directory DNS name: The fully qualified domain name (FQDN) of your AD service (for example, activeroles.demo).
-
Directory NetBIOS name: The NetBIOS name (or shortname) of your AD service (for example, ARDEMO).
-
Admin password: The password of the default admin account (named admin).
-
-
After specifying all required settings, it takes approximately 30-40 minutes to create the AWS Managed Microsoft AD instance. If you run into any issues when creating the environment, see Troubleshooting AWS Managed Microsoft AD in the AWS Managed Microsoft AD documentation.