Posted On: Jul 5, 2017

Starting today, you can use AWS Directory Service for Microsoft Active Directory (Enterprise Edition), also known as AWS Microsoft AD, to help enforce password policies that meet your security standards. AWS has added five password policies to your AWS Microsoft AD directory, and you can configure and manage these policies to enforce different security requirements for different user groups.

Using standard Microsoft password policy tools such as Active Directory Administrative Center, you can edit these password policies and apply them to user groups you manage in AWS Microsoft AD. With this capability, you can specify password strength as well as account lockout policies for authentication failures.

To learn more about how to edit and apply password policies, see Using Fine-Grained Password Policies in AD. To learn more about how password policies are integrated in AWS Microsoft AD, see the AWS Microsoft AD documentation.

This feature is now available to all AWS Microsoft AD customers at no additional charge.

By using AWS Microsoft AD, you do not have to configure and maintain domain controllers or synchronize identities from your on-premises Active Directory to the cloud. With just a few clicks, you can deploy a highly available Active Directory infrastructure that is built on actual Windows Server 2012 R2 in the AWS Cloud. Automated software updates, security patching, and failover are all provided as part of the service.

To learn more, see the Directory Service home page.