Microsoft Workloads on AWS
Category: AWS IAM Identity Center
Automate SCIM provisioning from Active Directory to IAM Identity Center
In this blog post, we will show you how to build and deploy a custom solution to automate the process of provisioning users and groups from Microsoft Active Directory (AD) to AWS IAM Identity Center using the System for Cross-domain Identity Management (SCIM) protocol. Introduction Many organizations manage their user identities using AD and rely […]
Use custom attributes for Attribute-Based Access Control (ABAC) with Microsoft Entra ID and AWS IAM Identity Center
In this blog post, you will learn how to use custom attributes for Attribute-Based Access Control (ABAC) with Microsoft Entra ID (formerly known as Azure Active Directory) as the single sign-on (SSO) identity provider integrated with AWS IAM Identity Center (formerly known as AWS SSO). ABAC allows you to control access or fine-grained permissions to […]
Integrate multiple Microsoft Entra ID tenants with AWS IAM Identity Center
In this blog post, we will guide you through configuring cross-tenant synchronization with multiple Microsoft Entra ID tenants using AWS IAM Identity Center. By following the steps outlined in this post, you can simplify access to your Amazon Web Services (AWS) resources while enabling collaboration efforts between Entra ID tenants within your organization. Background Organizations […]
Synchronize Active Directory users to AWS IAM Identity Center using SCIM and PowerShell
In this blog post, I will show you how to use PowerShell to synchronize changes to Microsoft Active Directory (AD) users and groups for federated access to Amazon Web Services (AWS). Introduction Some customers have a well-established Active Directory Federation Service (ADFS) implementation and would like to leverage it for federated access to AWS via […]
Integrating SAMBA 4 Active Directory with AWS IAM Identity Center
In this blog post, we will show you how to integrate an LDAP open-source solution with AWS IAM Identity Center leveraging either AWS Managed Active Directory or Active Directory Connector. Introduction Microsoft Active Directory has been a widely used identity management solution in Windows networks for decades. It delivers authentication and access protocols, such as […]
An AWS perspective on securely managing Windows Server infrastructure at scale
In this blog, we will provide a holistic approach to help customers manage their Windows Server infrastructure securely and at scale for both cloud-only and hybrid cloud using AWS services. This approach helps our customers use more efficient, unified, and automated operational solutions for managing server infrastructure. Cloud innovations have opened new possibilities for enterprise […]
Analyze Active Directory Event logs using Amazon OpenSearch
Today, security and operation teams have to rely on security events from multiple Active Directory (AD) domain controllers for security analysis. Some key insights from the security analysis include changes to Windows Firewall, users or groups, Windows Registry, and failed login attempts etc. Centralizing these events from domain controllers and domain joined servers and computers […]