Can I use AWS Directory Service for Microsoft Active Directory to authenticate users in Amazon QuickSight?

Last updated: 2019-07-18

What is AWS Directory Service for Microsoft Active Directory, and how can I use it to authenticate users in Amazon QuickSight?

Resolution

Amazon QuickSight supports both AWS Managed Microsoft AD and Active Directory Connector. AWS Managed Microsoft AD creates a fully managed Microsoft Active Directory in the AWS Cloud. For more information, see Getting Started with AWS Managed Microsoft AD. To use AWS Managed Microsoft AD to authenticate users in Amazon QuickSight:

  1. Create an AWS Managed Microsoft AD directory.
  2. Create an Amazon QuickSight Enterprise edition account.
  3. Manage the user accounts in Amazon QuickSight Enterprise edition.

When you use Directory Service to launch a directory, AWS creates an organizational unit (OU) with the same name as your domain. AWS also creates an administrative account with delegated administrative rights for the OU. You can create user accounts, groups, and policies within the OU using Active Directory users and groups. For more information, see Best Practices for AWS Managed Microsoft AD.