Can I use AWS Directory Service for Microsoft Active Directory to authenticate users in Amazon QuickSight?

Last updated: 2021-01-05

I want to use AWS Directory Service for Microsoft Active Directory to authenticate users in Amazon QuickSight. How can I use Directory Service to authenticate users in Amazon QuickSight?

Resolution

Amazon QuickSight supports both AWS Managed Microsoft AD and Active Directory Connector. AWS Managed Microsoft AD creates a fully managed Microsoft Active Directory in the AWS Cloud. For more information, see Getting started with AWS Managed Microsoft AD.

To use AWS Managed Microsoft AD to authenticate users in Amazon QuickSight, perform the following:

1.    Create an AWS Managed Microsoft AD directory.

2.    Create an Amazon QuickSight Enterprise edition account.

3.    Manage the user accounts in Amazon QuickSight Enterprise edition.

When you use Directory Service to launch a directory, AWS creates an organizational unit (OU) with the same name as your domain. AWS also creates an administrative account with delegated administrative rights for the OU. You can create user accounts, groups, and policies within the OU using Active Directory users and groups. For more information, see Best practices for AWS Managed Microsoft AD.