Posted On: Mar 8, 2018

Starting today, AWS Directory Service for Microsoft Active Directory, also known as AWS Managed Microsoft AD, enables you to manage administrative permissions in your managed directory more easily. You can now grant administrative permissions to users from your existing Microsoft Active Directory (AD) by adding these users to the new AWS delegated AD security groups in AWS Managed Microsoft AD.

Managing AWS Managed Microsoft AD administrative permissions using your existing Microsoft AD users enables administrators to sign in to your managed directory using their existing Microsoft AD credentials and perform administrative tasks, such as adding users, configuring fine-grained password policies, and enabling Microsoft enterprise Certificate Authority.  

The new AWS Managed Microsoft AD delegated security groups are available in all AWS Regions where AWS Managed Microsoft AD is offered.