Active Directory Trust Relationships

  • In a one-way trust between Domain A and Domain B, users in Domain A can access resources in Domain B but users in Domain B can't access resources in Domain A.

  • AWS Managed Microsoft AD supports all three trust relationship directions: Incoming, Outgoing and Two-way (Bi-directional).

  • When setting up trust relationships, you must ensure that your on-premises directory is and remains compatible with AWS Directory Services.

  • For example, your users can sign in to the AWS Management Console and Amazon WorkSpaces by using their existing AD user names and passwords. Also, when you use AD-aware applications such as SharePoint with AWS Managed Microsoft AD, your logged-in Windows users can access these applications without needing to enter credentials again.

PreviousRemoving the default FullAWSAccess SCPNextCognito User Pool Groups

Last updated