{"id":593,"date":"2021-11-11T05:38:19","date_gmt":"2021-11-11T05:38:19","guid":{"rendered":"http:\/\/18.141.20.153\/?p=593"},"modified":"2025-08-20T11:27:33","modified_gmt":"2025-08-20T11:27:33","slug":"authenticate-windows-ec2-instance-aws-managed-microsoft-active-directory","status":"publish","type":"post","link":"https:\/\/learning.workfall.com\/learning\/blog\/authenticate-windows-ec2-instance-aws-managed-microsoft-active-directory\/","title":{"rendered":"How to authenticate Windows EC2 Instance using AWS Managed Microsoft Active Directory?"},"content":{"rendered":"<span class=\"rt-reading-time\" style=\"display: block;\"><span class=\"rt-label rt-prefix\">Reading Time: <\/span> <span class=\"rt-time\">10<\/span> <span class=\"rt-label rt-postfix\">minutes<\/span><\/span>\n<p><img src=\"https:\/\/lh5.googleusercontent.com\/MiSx_Rpse3FwbsjyRN2IX1iL3SnlMRuw3m4aVcxndQoNwPBuK_RA1ZqdrAaHXccqt0scUWXKT5zDGg3bqXJcOOifHhBdR_qxtxDnyr-FraXGkIK7ALl-nWr6WLyriqYIgic8iixV\" style=\"width: 1600px;\"><\/p>\n\n\n\n<p class=\"has-text-align-justify\">Currently, 95% of enterprises use Active Directory for authentication. Adopting cloud technology successfully necessitates taking into account on-premises IT infrastructure and applications. Active Directory architecture that is both reliable and secure is a vital IT infrastructure basis for businesses that run Windows applications. The directory service can be hosted in the on-premise data centers, but it is not more elastic and doesn\u2019t provide high availability. It also requires a skilled person to monitor and manage the computing of Active Directory Domain Services. Implementing Microsoft Active Directory services in the AWS cloud can help us to connect with Multiple workloads hosted in AWS and reduce latency in authenticating Domain users and other AWS services. In this blog, we will demonstrate how to Authenticate Windows <a href=\"https:\/\/www.workfall.com\/learning\/blog\/15-awsome-years-of-amazon-ec2-and-still-going-strong\/\">EC2 Instance<\/a> using AWS Managed Microsoft Active Directory.<\/p>\n\n\n\n<p><strong>In this blog, we will cover:<\/strong><\/p>\n\n\n\n<ul><li>What is Active Directory?<\/li><li>What is AWS Directory Service and how does it work?<\/li><li>Benefits of hosting Active Directory in the AWS Cloud<\/li><li>Creating a Windows EC2 Instance<\/li><li>Creating Active Directory in AWS<\/li><li>Joining Windows EC2 instance to Active Directory Domain<\/li><li>Managing Directory Services from Windows Instance<\/li><\/ul>\n\n\n\n<h2>What is Active Directory?<\/h2>\n\n\n\n<p class=\"has-text-align-justify\">Active Directory (AD) is a directory service developed by Microsoft for Windows domain networks, using which we can manage computers and other devices on a network. It also allows to set up and configuring of domains, access rights, users, and groups. The IT team uses AD to organize the company&#8217;s complete hierarchy from which computers belong on which network, to what your profile picture looks like, or which users have access to the database server. For example, when a user logs into a computer that is part of a Windows domain, Active Directory checks the password and determines whether the user is a system administrator or a normal user.&nbsp;<\/p>\n\n\n\n<h2>What is AWS Directory Service and how does it work?<\/h2>\n\n\n\n<p class=\"has-text-align-justify\"><a href=\"https:\/\/docs.aws.amazon.com\/directoryservice\/latest\/admin-guide\/directory_microsoft_ad.html\" target=\"_blank\" rel=\"noreferrer noopener\">AWS Managed Microsoft AD<\/a> is based on a real Microsoft Active Directory, so you won&#8217;t have to synchronize or replicate data from your local Active Directory to the cloud.AWS Managed Microsoft Active Directory (AD), enables your directory-aware workloads and AWS resources to use managed Active Directory (AD) in AWS. You can quickly join Amazon EC2 and Amazon RDS for SQL Server instances to your domain with AWS Managed Microsoft AD, and leverage AWS End-User Computing (EUC) services like Amazon WorkSpaces with AD users and groups. In this blog, we will demonstrate how to join an EC2 instance to the active directory domain. You can refer to the following image to understand how does it work:<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img src=\"https:\/\/lh4.googleusercontent.com\/TwZazaPdOyR8v9jgUbR2xHEXHx00Om7roGmEw1_AI7Vsi1q_zwrEtJbV7n0QoTQqpaDUm6F_XZ9RurA5IdfMnWc1yAStKeQWNRSid8tQfkBzeSlwDVQBx9mJKgMYMIYTVymHZpyP\" alt=\"AWS Managed Microsoft Active Directory\"\/><\/figure>\n\n\n\n<h2>Benefits of hosting Active Directory in the AWS Cloud<\/h2>\n\n\n\n<p>The following are the benefits of hosting AD in the AWS Cloud.<\/p>\n\n\n\n<ul><li>All the workloads that depend on Active Directory can be easily migrated to AWS Cloud.<\/li><li>Centrally manages the authentication and authorization in the Cloud.&nbsp;<\/li><li>It\u2019s highly available.<\/li><li>It helps avoid the complexity of replicating and synchronizing data across multiple directories.<\/li><li>It helps in setting up users, groups, and policies to quickly authenticate AD-related workloads.<\/li><li>AWS provides FSx for Windows File servers which is highly scalable and requires AWS Managed Microsoft Active Directory for Authentication.<\/li><\/ul>\n\n\n\n<h2>Hands-on<\/h2>\n\n\n\n<p>As we are going to set up an AWS-managed Active directory service, we should check for the following:<\/p>\n\n\n\n<ul><li>VPC with public and private subnets<\/li><li>Running Windows EC2 Instance<\/li><\/ul>\n\n\n\n<p class=\"has-text-align-justify\">Once we have set up the VPC with the subnets and the Windows EC2 instance running within the VPC. We will go ahead and create an active directory service in AWS and join the Windows EC2 Instance with it.<\/p>\n\n\n\n<h2><strong>Creating Active Directory in AWS<\/strong><\/h2>\n\n\n\n<p>From the AWS console, below security, identify, &amp; compliance, select Directory Service.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img src=\"https:\/\/lh3.googleusercontent.com\/zHOG11fuyf9iRQXw7YWoMpBKNQYMI8mwoON-KsvrdvHOj2WyOLFplOYM8ScEFWMHrhmOD3mbRqIK2Dx8ohzcY263fl7LK7-CigW2DbYYucjOw2Fols4snmntkfXgiad0zHCEIA6G\" alt=\"AWS Managed Microsoft Active Directory\"\/><\/figure>\n\n\n\n<p>And you will see the following screen.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img src=\"https:\/\/lh5.googleusercontent.com\/gCkEjym-AaBXWhDzH8ptnBjjBTZ_VNFxmNiviUsSUL_-DeE7z6LmGs8kvwjYmuovRklTqEQ1knbR7kmN7x2xfLkCB5L6PtpL75eRcnddeGSGTC68BgzU3_4hJ5cxFpTpZpHwSQSo\" alt=\"AWS Managed Microsoft Active Directory\"\/><\/figure>\n\n\n\n<p>Click Set up directory and then AWS Managed Microsoft AD as the directory type.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img src=\"https:\/\/lh3.googleusercontent.com\/10A8zatvcGr4-O_aJqstGc4K3sLjTe1BSBbXxdH-12l2HNFTQVH-RPqMAzijwweNK0jjjmjIOCqY2VfjcJFftya959wCagfg_n60-XhlFQqEENivlORE3TzdqvX27zHjURqL8aiI\" alt=\"AWS Managed Microsoft Active Directory\"\/><\/figure>\n\n\n\n<p>and click Next<\/p>\n\n\n\n<p>Microsoft AD is available in two editions.<\/p>\n\n\n\n<p><strong>Standard Edition<\/strong>: These editions are used for small and medium-sized businesses.<\/p>\n\n\n\n<p class=\"has-text-align-justify\"><strong>Enterprise Edition<\/strong>: For large businesses, Enterprise Edition can be used.<\/p>\n\n\n\n<p>Choose the edition as per your requirement.<\/p>\n\n\n\n<p>For this implementation, we are choosing Standard Edition.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img src=\"https:\/\/lh5.googleusercontent.com\/JpOTnOslAh8hl2W7LO_UVCmbyFnv44gpIuWSAFtgls1vo0lSpEQDW5BgrfyIDqJQ---USTUluNfLIkClfKooiQHFNRprLzmNVPnuklEMmxzt6iYmW69qfCMT-4CYvNgCuKxroEOE\" alt=\"\"\/><\/figure>\n\n\n\n<p class=\"has-text-align-justify\">For Directory DNS names, we need to provide a fully qualified domain name which should be able to resolve within the VPC.<\/p>\n\n\n\n<p>These DNS names do not need to be publicly available.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img src=\"https:\/\/lh5.googleusercontent.com\/HfE_Y5YPp-nHVwnuWvROuWU_nMBNggt4HAouoROhZNgPb7b3DIUqQKUUUB59gLmnavkcifSTdIsWy0A829YUCUYc_kyMcekTnzuu34RTj5UDy0mNa9U6xblUcxIr8reEuxMSWmjk\" alt=\"\"\/><\/figure>\n\n\n\n<p class=\"has-text-align-justify\">Optionally, we can provide a name for the networking service (NetBIOS name), if we don&#8217;t provide it, it will automatically pick the first part of the Directory DNS name.<\/p>\n\n\n\n<p>Then, we need to set up admin passwords.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img src=\"https:\/\/lh6.googleusercontent.com\/9yMizIi_iKiVUkoUEJdvVms_algbL47RpAa4cxJLpwtwQORwNrdzLGzwrCPFMhsQTA6TYijF08-14VtqarasfvzF9Z1tNapIf5Mima0V7VzDPB9d6Wz7eBGYzoLl9k-VZsACfTfD\" alt=\"AWS Managed Microsoft Active Directory\"\/><\/figure>\n\n\n\n<p>Click Next<\/p>\n\n\n\n<p>Under Choose VPC and subnets, define where the directory service should be created.<\/p>\n\n\n\n<p class=\"has-text-align-justify\">For this, we must need at least two subnets that are of different availability zones in a VPC.<\/p>\n\n\n\n<p>Choose the VPC and the preferred subnets.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img src=\"https:\/\/lh5.googleusercontent.com\/BgBjoLqTVxJksfJapYbC3VocvHj2OcMekDcIubezPvCchgx3bhZ4VaFinjw4T-gS3dg9hKCjcbw5mc3JRcBDxcglRr_DZELcSa8-gyymotaFPgRrcIbJreswxRjdxsOpVk-TaLnB\" alt=\"\"\/><\/figure>\n\n\n\n<p>Choose next, review the configurations and then select <strong>Create directory.<\/strong><\/p>\n\n\n\n<p>The AD is in the creating state, it will take up to 20-45 minutes.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img src=\"https:\/\/lh4.googleusercontent.com\/fZbbUQkUuiGwga0oH0XdxSp33aTJplfcyZzB0tuBSMA7CDa2ryYnp5Il8lOkErcAX_TukTp0WLsnKxINRe2AxBGGEj7OZc0Fv8SFIMxBSfD0kkMuJjrSP7aBlc__M-CtArJVgaFR\" alt=\"AWS Managed Microsoft Active Directory\"\/><\/figure>\n\n\n\n<p>Directory service is implemented and is Active.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img src=\"https:\/\/lh4.googleusercontent.com\/wzy0Fals57J_qwdcbSWEle9CBVmSPwpdUHm4yhNpwtzGxokblf4RuRgeLf-W7m4y4SQ7nhxoR_GQZ-g1YFDGd3zj_GBsTbUwp_5lHGmI3L_wGa_It8PP8HA4s8c56WtczOlOeEaT\" alt=\"\"\/><\/figure>\n\n\n\n<p>Click the Directory ID to find information like DNS name, DNS addresses, etc.<\/p>\n\n\n\n<p>The next step is to create and join the Windows EC2 instance to the Active Directory domain.<\/p>\n\n\n\n<h2><strong>Creating Windows EC2 Instance<\/strong><\/h2>\n\n\n\n<p>To create a Windows EC2 instance, log in to EC2 Console.<\/p>\n\n\n\n<p>In the navigation pane, choose Instances<\/p>\n\n\n\n<p>Choose Launch Instance.<\/p>\n\n\n\n<p class=\"has-text-align-justify\">Step 1: Choose an Amazon Machine Image (AMI) page that displays the lists of AMI\u2019s, that serves as a template for the EC2 instances.<\/p>\n\n\n\n<p>AMI is an operating system such as Ubuntu, CentOS, Windows, etc&#8230;<\/p>\n\n\n\n<p>For this implementation, select the AMI of the Windows OS.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img src=\"https:\/\/lh3.googleusercontent.com\/WX3-3c67pQE0OXHezkoblL99YCAVzOpqJNKwTitDbUAX3u3BqdYYovL8bI1kDNAg9hOkHeLyq7PFQO6fFEXIdCW_wW1IxGqzY-ngG8AKnSPPrXfS359gZopOPAe3h8Kc7yCbwUhn\" alt=\"AWS Managed Microsoft Active Directory\"\/><\/figure>\n\n\n\n<p class=\"has-text-align-justify\">Step 2: Choose the preferred Instance Type, we should choose the hardware configuration of the Instance such as CPU, memory.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img src=\"https:\/\/lh6.googleusercontent.com\/3-nNMuFjve_3vcSjDnI6HJfUXmmVaw6cGGJmR1Nsev6CYZZ21NhMjYzSKdtn0GVCFNO6Scx2-WHrkKIG4hDSNx3PIRUL3lJ1I9LO02ZqcF84bDxsQLKNSwl_vgNgxWNDiL_btqeP\" alt=\"\"\/><\/figure>\n\n\n\n<p>Click Next: Configure Instance Details<\/p>\n\n\n\n<p>Step 3: Configure Instance Details, select the VPC and the subnet to launch the windows instance.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img src=\"https:\/\/lh6.googleusercontent.com\/ZhBX4l1z0SwjyNHBTJHzafDUk4X7PS5vdDKt_174Zqu5XnzJ4dyP6WLpc_7xbh06SsWfMpHPb1_-HKE0WR3Cbd4qZjXPKTQcxF8s-BYIBCGCOsKOU-_OmHZJHaNL3Q5dhC6fu8Rq\" alt=\"\"\/><\/figure>\n\n\n\n<p>and click Next: Add Storage<\/p>\n\n\n\n<p>Step 4: Add Storage, enter the Storage size and Volume type to be used for the Windows Instance.<\/p>\n\n\n\n<p class=\"has-text-align-justify\">If required we can attach an additional volume with the Instance during launch.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img src=\"https:\/\/lh5.googleusercontent.com\/2WVBJDL6g8ip5zrUtdL6r-l308gsUQeQeHCwI6SIeMjz-Gp0HhxS0NLtRsOclCqzGO67SeNzNnMfiUKMv36ybbbcamIf2lgElsiUiQbkeJLYCorgb5LFm0fEOtD4eRGalx9h_pJ-\" alt=\"AWS Managed Microsoft Active Directory\"\/><\/figure>\n\n\n\n<p>and click Next: Add Tags<\/p>\n\n\n\n<p>Step 5: Add Tags<\/p>\n\n\n\n<p>Provide a Key and Value, for example, Name: WindowsOS&nbsp;<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img src=\"https:\/\/lh6.googleusercontent.com\/mrMeQxY2K6q2h6eAVPo0hsTuhLT5g3uazOYIrPKc0um5pBxbCvAcTCQ8kxv_K7-Y7nzol028R9fE6_wpgFtPfL0DwLVBoUOK-wFDQ2dfS2QC_7H_hakE4_T6Cat55wIBNS8Kx04p\" alt=\"\"\/><\/figure>\n\n\n\n<p>Click Next: Configure Security Group<\/p>\n\n\n\n<p class=\"has-text-align-justify\">Step 6: Configure Security Group, a security group is a firewall rule which will control incoming traffic to the instance.<\/p>\n\n\n\n<p class=\"has-text-align-justify\">We can allow specific ports for the instances, after launching the instance, to login to the Windows EC2 instance, we need to allow port 3389 (RDP).<\/p>\n\n\n\n<p>Also, provide names for the security group to manage security groups easily.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img src=\"https:\/\/lh5.googleusercontent.com\/88aNRZ7F5a6GVIEPiCCiAC8lj2EIHkiOlj0aw9e-4CARpNhqjPdwLX1iLkg-Z0pHjq3-kIs7_5kKLHZusGxiWViEca1_WMtMKoER7QBXGUYzGTCAdx1xxpQBK_a9zlJJWRCMvggf\" alt=\"AWS Managed Microsoft Active Directory\"\/><\/figure>\n\n\n\n<p class=\"has-text-align-justify\">A security group can be modified at any time, post launching the instance as well.<\/p>\n\n\n\n<p>Click Review and Launch<\/p>\n\n\n\n<p class=\"has-text-align-justify\">Step 7: Review Instance Launch, here is the review of all the configurations for the EC2 instance, once you validate, choose Launch<\/p>\n\n\n\n<p class=\"has-text-align-justify\">If you are launching an instance for the first time, you should set up a key pair using which you can log in to the server.<\/p>\n\n\n\n<p>If you have a key pair already. It can be used.<\/p>\n\n\n\n<p>Choose to Create a new key pair<\/p>\n\n\n\n<p>Enter the key pair name and press Download Key Pair<\/p>\n\n\n\n<p>The .pem file will be downloaded to the local system.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img src=\"https:\/\/lh6.googleusercontent.com\/yw5fhIbxc4lXsIbS0mrIg0UpwgvbdTwqYNYgrMYsrQUTJGomeSAm8ZU4WNzI2vdIBzheKPiYym7gQ_MpKEozvNaZlZn9s6fE9om11RsZvmEUEjx2WDlq_NMFOKpGNYk2YMm5E4-6\" alt=\"\"\/><\/figure>\n\n\n\n<p>and click Launch Instances<\/p>\n\n\n\n<p>The instance has started creating, which has its own instance ID.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img src=\"https:\/\/lh5.googleusercontent.com\/vwfcYQjuPnAXji2tQ-ag7HuiaCHAJJjB8Dg33oFD2oJFb1KPOWslUEv6zQ8Oa5hDOcByg9rYpUR12F4qJ5nKGBQUKhPbUg51rUkaRKtkXx7XkIr4X3eGLFB8GshbpmiKJtnAsdpn\" alt=\"\"\/><\/figure>\n\n\n\n<p>Click View Instances<\/p>\n\n\n\n<p>The instance is successfully created and is running.<\/p>\n\n\n\n<p>We should be able to RDP into the instance.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img src=\"https:\/\/lh5.googleusercontent.com\/7u2cZJWIaUc7VMcBt0zrhVL4AZ56z3lejS-53fVzKE8hpIAZFiGzAOT2ntC90Qo62x4ENWvBU7LMNCGQWM3HxQqNcNWNgnRwKVSObWiOjQtIZMQglLqGxIAEbA1XuP9IOMsAVUS2\" alt=\"\"\/><\/figure>\n\n\n\n<p>The instance is ready to be added to the Active Directory Domain.<\/p>\n\n\n\n<h2><strong>Joining Windows EC2 Instance to the Active Directory Domain<\/strong><\/h2>\n\n\n\n<p>Login to the EC2 instance using the RDP client such as Remmina as a Local administrator.<\/p>\n\n\n\n<p class=\"has-text-align-justify\">To connect to the Windows EC2 Instance, check the Instance and click Connect and then select RDP client.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img src=\"https:\/\/lh3.googleusercontent.com\/QQa7ZPQzjQbnTlQNHJMMAit5lN-U1-n4HrTxEZXZafvWf5X5bXwLFM-kS_UHAqq-SJeV7SgDfp7_iXti3GMd04fCvAehClw7bPph4fRmjCvjwf_UcY35i38fkh8DvMm6jfV9zZWD\" alt=\"\"\/><\/figure>\n\n\n\n<p class=\"has-text-align-justify\">To get the password of the Instance, click get the password and upload the .pem which was downloaded while creating the EC2 instance.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img src=\"https:\/\/lh4.googleusercontent.com\/cjImsS00fV0pGWjLaJGX2UPMfEwLl9hAyQUvX6PXd8cSeIaWnGCC4c_0zB-IcRdH2cfgM3vIarfXmgDitH8cEegOexexLfVxsKqpBGEHEV4kl83zZnVVByNIXvu4tZX0QVu0gMnD\" alt=\"\"\/><\/figure>\n\n\n\n<p>Click Browse and upload the .pem file and click Decrypt Password.<\/p>\n\n\n\n<p>You can see the password now, make a note of it.<\/p>\n\n\n\n<p class=\"has-text-align-justify\">Now open the Remmina or any RDP client from the Local system and provide the Instance Public IP Address and the username and Password.<\/p>\n\n\n\n<p>You will be connected to the Windows EC2 Instance as Administrator.<\/p>\n\n\n\n<p>Let&#8217;s join Windows EC2 Instance to the Active Directory Domain service.<\/p>\n\n\n\n<p class=\"has-text-align-justify\">We need to configure the DNS of the Windows EC2 Instance with the DNS addresses of the Active directory domain service.<\/p>\n\n\n\n<p>To do this, in the search box, type run, open it, and then ncpa.cpl and click OK.<\/p>\n\n\n\n<p>Which will open the Network Connections where we can see the network adapters.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img src=\"https:\/\/lh6.googleusercontent.com\/aOmPsdHFAyH9tN1fR7rfAMt-I_hkajWCwloxrT47JkthkMTRzIVRGPFnh9mLSujz3W-x732e6BbBLIHvaOPJfz4P8FKScsE46dFoHMomyzWDn-ogQKbOjhM6FZcZlQfiTFotHRPF\" alt=\"\"\/><\/figure>\n\n\n\n<p>Right-click on that, and then choose Properties.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img src=\"https:\/\/lh3.googleusercontent.com\/ASw6zDi7KPSHqYjT22R4MyCnTcMfHV_BJovRAyJUKfa3KHVs9PBcLQv_DsUoOJpYfRZdEeR4tfHit9Sd2xuge5PXKMVH-wfp_cM9F-XKTqgjtWQ6uYnI_yH51CPgdnvHAJgI4yzb\" alt=\"AWS Managed Microsoft Active Directory\" title=\"Active Directory\"\/><\/figure>\n\n\n\n<p>Select Internet Protocol version 4 (TCP\/IPv4) and choose Properties.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img src=\"https:\/\/lh4.googleusercontent.com\/CZeX46cMyFuPTJvfmFPgx9UOdE0Y_wWbdNoiqemyrTVJQjX_qeea0U1bty-h0VctPDiTzgr9RQq_-0o81xN8ZvBAiOIwNEgA2IXvmRHku0AimX2QBvoACYGJFNcJc-OaKqmRxtcO\" alt=\"Active Directory\" title=\"Active Directory\"\/><\/figure>\n\n\n\n<p class=\"has-text-align-justify\">Select, use the following DNS server addresses and enter the DNS addresses of the Active Directory domain service.<\/p>\n\n\n\n<p>Click OK.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img src=\"https:\/\/lh4.googleusercontent.com\/oyHwKXIu91r1SVDkvZH0OwdEXrifWJXpjGIB_-HIIiDm8eUsFfnyzhs9PBHRkoPjWM-BBQ69ZiNbCE5VxlbtDQAwltTeeURKSLKPeCvKOT0slg19PFE9iGrHL3qrIe8XzabZvejg\" alt=\"\"\/><\/figure>\n\n\n\n<p>Now, open File Explorer.<\/p>\n\n\n\n<p>Right-click This PC and select Properties.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img src=\"https:\/\/lh5.googleusercontent.com\/lwFIdqCqrgUkw4zsw6MZ64zNSUV6NCgII89I2IULig4-Z7owU27jtI90sjAT0f3k839gt459dY-U-172rcUhKeB1ujxyKFaXaTfOphkCtQewl_qd-FsUrjb2eI9GFPSH2NsMdVn7\" alt=\"AWS Managed Microsoft Active Directory\"\/><\/figure>\n\n\n\n<p>To add an instance to Domain, click Change Settings.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img src=\"https:\/\/lh4.googleusercontent.com\/A-mttLACNyOOoKB1LCrdVsu9z_bJVQED-XICs8wemaLyUGfoyVZJuy4v9uoYVhlCnl7lfZ_Lc2CaeT2ZJKZtqNldrp7bsmEQBSyeSJNfQ-iI1P25vObLHLsj8LaZF-zCxUkBB8Te\" alt=\"\"\/><\/figure>\n\n\n\n<p class=\"has-text-align-justify\">and under Computer Name, select Change, choose Member of Domain, enter the DNS name (ad.workfall.com) of the directory service, and Press OK.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img src=\"https:\/\/lh3.googleusercontent.com\/nlrlW_cjJfXQe1Iup1P15bulCUpicdpvM_2gbfY9cTRQPs-l72xvj80sbqvYIBtzJWdKCH16XA3HMhBwkCe5eHI8P17kMyvLCQbJSrBhNVzqHuwL94md-TtpVSUWMtlaj15FsznU\" alt=\"AWS Managed Microsoft Active Directory\"\/><\/figure>\n\n\n\n<p>Which requires the directory service\u2019s Admin username and Admin password.<\/p>\n\n\n\n<p>Enter the credentials and click Okay.<\/p>\n\n\n\n<p>You will be greeted as,<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img src=\"https:\/\/lh4.googleusercontent.com\/Tw8SR4B3nak_e8asnp7LWeBk3-Oo_1RKci75s-EqQWhzifT6aCnyMDzwo-VCpNjkK2Og4O0bgWzhDGO7yb64UTJ5gIJjOZkZuioVr4u_cN8HnpAYtoCxX468XEKEVgoz1Ek6RYZl\" alt=\"AWS Managed Microsoft Active Directory\"\/><\/figure>\n\n\n\n<p>The Windows EC2 instance successfully joined the Active Directory domain services.<\/p>\n\n\n\n<p>Restart the EC2 instance for the changes to take effect.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img src=\"https:\/\/lh5.googleusercontent.com\/7tK3cbmJdDUv6G2cer1nw0ZpPakDEJUD0K5WPtWVPoRNYDoLUmG2tep27zFN6r8UpHbURhzw5f77GiolQVSMUmrFzQRK4h78aUyS909WskN_1v1hdUmgLPy6uAjv1jEHQ8QKldaB\" alt=\"Active Directory\" title=\"Active Directory\"\/><\/figure>\n\n\n\n<p class=\"has-text-align-justify\">After reboot, we can RDP to the instance as Directory Service Admin instead of using the credentials of Local Admin credentials.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img src=\"https:\/\/lh4.googleusercontent.com\/KHrgCd-kE1RTDadicuuBMWQ22GF9qo0b237kJ3wk-ZdTN7De9Isl8y3g9ciBZvIebJLRTdR3jI44-7zPMrJ-0T7RigBDG3sjQKA5FBZffTj9I-hSH5n9CGW-wLu07onKwo-3EZ6k\" alt=\"AWS Managed Microsoft Active Directory\"\/><\/figure>\n\n\n\n<h2><strong>How to Manage Active Directory Services?<\/strong><\/h2>\n\n\n\n<p class=\"has-text-align-justify\">From the AWS Directory services console, we don\u2019t have many options to manage users, groups, computers of the Active Directory.<\/p>\n\n\n\n<p>We will be using the same instance to manage the AWS Managed Directory Service.<\/p>\n\n\n\n<p>Search and open the Server Manager.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img src=\"https:\/\/lh4.googleusercontent.com\/ds7bayhutesHmq-d7NgCvau_50_Y7lh5ntYBpcucQiyH1mpZDJqwuEwY287cW08n6bvrZdaCBBIOiTwC381Y0SeMEtWdiMr1ED6mW_qp9rWh5oGRUs3dos0bUlKesWAGCGw4bjL2\" alt=\"AWS Managed Microsoft Active Directory\"\/><\/figure>\n\n\n\n<p>Click add roles and features, click Next.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img src=\"https:\/\/lh6.googleusercontent.com\/gWpLziTrzmloXxE2poTUS-5JBq83gZ7l7hyzcIMJlRbUVXuRDcWrr2gFRB2lOAipbM2CETqEoGQB_5ORO6ZK6aGoMIKZh3AFHF-o3oc4T5vC51bruRMViULXI5idg9Bbl77FAdGw\" alt=\"AWS Managed Microsoft Active Directory\"\/><\/figure>\n\n\n\n<p class=\"has-text-align-justify\">Installation type, choose role-based or feature-based installation, and select Next.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img src=\"https:\/\/lh5.googleusercontent.com\/UyLQFRNA7oIp7Ylt_QqJpkFyoyMso40yK1j54nh99H5CL7Z0_lQ6fbHY7ipPL5cof_kq2XvwVZGABregsn_1L_ZKGTcNeUbst3Bt6-XPSjY0nZ2olVkop9XZiM1fcHw4gKMspDV5\" alt=\"Active Directory\" title=\"Active Directory\"\/><\/figure>\n\n\n\n<p class=\"has-text-align-justify\">For the Server Selection, the same instance will be used for the installation of features and roles.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img src=\"https:\/\/lh4.googleusercontent.com\/2NskoCJV-gauN0xH_vNfEcfhuap7n7Vd12If2B5gLZOJxX4PYaKc2D3G6mPUmUEQfCuHL9I02Yxa1HR3RKICvxn2ZAJbq2MMSoGNCU1C9h1kSUnKzxrErm5HvzTfhpXeU8NRtsO4\" alt=\"AWS Managed Microsoft Active Directory\"\/><\/figure>\n\n\n\n<p>and click Next<\/p>\n\n\n\n<p>For Server Roles, no Role installation here.<\/p>\n\n\n\n<p>Click Next, for Features<\/p>\n\n\n\n<p class=\"has-text-align-justify\">Choose Remote Server Administration Tools, and select Role Administration tools<\/p>\n\n\n\n<p>Check AD DS and AD LDS tools<\/p>\n\n\n\n<p class=\"has-text-align-justify\">Make sure Active directory-related features are chosen.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img src=\"https:\/\/lh3.googleusercontent.com\/3BssY7VT5lHjnZhrXpWwFzGGmypqSy1cnfay-YcexBqg89ipAlXF0BW8gNguZlOmzCDchc5HwDahoQ29FONkcHONDuEapYxLnz6qFcM7kJRD6CdWvFhtqUsvjTQ__IAGw6CyeSMC\" alt=\"AWS Managed Microsoft Active Directory\"\/><\/figure>\n\n\n\n<p>and click Next and click Install.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img src=\"https:\/\/lh4.googleusercontent.com\/-RIwaZ6TghlWqxiy6IObzYaNfe9cRFfdLQqXnuaA69DP-CKiVX9XGJ_VT5EClffndDub7TjFUSQtD5Eeyp3V8Swg9HAlJyc-HtFwt0C0mmQbF7sZELRnj1QsWO6pvv0B3-zF6siU\" alt=\"AWS Managed Microsoft Active Directory\"\/><\/figure>\n\n\n\n<p>The installation of features has started.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img src=\"https:\/\/lh5.googleusercontent.com\/0PZAYAHA3VcqGdDLdsPIGLaMCVsybVFM6ERZlnJL2IRSKnBCjMbYg6pjMLI7fxf2uAR4gW1jqda2pjr1c61abaN-KksQP9dEkW-RZyJAIN1PLF9aL_zf06UqtaJRDDW27uQ9QbJM\" alt=\"\"\/><\/figure>\n\n\n\n<p>Now the feature installation is successfully completed and click Close.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img src=\"https:\/\/lh4.googleusercontent.com\/BgUz6z3xsluty9RN5g2-dyE9GZvTu9Y63o7vzBqxdSpbBwNzTnumohPur7b2efyoJpSFSoNa_fJgmRHcEWwTYb4mr4ZP60506Q6yNwatbX2WEUxyaAHcnKu-96tbVimJ3I_ptVjz\" alt=\"\"\/><\/figure>\n\n\n\n<p>To avoid features based Installation, we can perform Role-based installation for AD.<\/p>\n\n\n\n<p>Simply choose Active Directory Domain Services, install it.<\/p>\n\n\n\n<p>Which will install directory service-related features on the system.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img src=\"https:\/\/lh6.googleusercontent.com\/fU2KQDvSztFyk5kW45Boc3Xim1G7xV6OXzgeYU2sajysdgSNKbgRWl29EQZPwymym6USD9K5wPhsJ7avnn1za8UZKXWB4QbXQSdv8Sqo1WWVHdsAHYXTgQI_tvEVMVkVaAu9cwDQ\" alt=\"\"\/><\/figure>\n\n\n\n<p>Under Windows Administrative tools,<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img src=\"https:\/\/lh3.googleusercontent.com\/ldA64zW9c_BofW9jMjQAMVM5FBCySl_OnEERCVnALwyyIos86s_73E3TQJ1xIKinKe8TmImAQp9RRZS4mO1tdD14vdiYSpCZskZWVLKpJ75BHGV2_ubQP_6IdZKD9gz12Ur-aAcc\" alt=\"Active Directory\" title=\"Active Directory\"\/><\/figure>\n\n\n\n<p>Choose Active Directory Users and Computers.<\/p>\n\n\n\n<p>You will see the following screen.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img src=\"https:\/\/lh5.googleusercontent.com\/oFDckEfciRHeclLjXkU8YLD8n-Axpf-6DZIF4YoY1GCU1Gx7meF01-KP37VPR0Fzb6n2YeEw0sqEF4D6OHK_3k5DHQRfhC9g5nMoYl4shPKUjwycoJgQR3ngWEtGPo23aWOjyisT\" alt=\"\"\/><\/figure>\n\n\n\n<p>No other user except Admin is peasant on the Active Directory Domain.<\/p>\n\n\n\n<p>It is not recommended to delete the Admin user.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img src=\"https:\/\/lh6.googleusercontent.com\/ReE7f05bWnfQ5DPAyLgbra-9AIJ8FdleXkHOzicsUOmkHfmiZepQzkitMI5OFg2SUa6vj-4hRq4P7EiuTrM1Ksqv_zWcBBGNdEWnJRngo_YjBC0YKk1-70Kkx-TvCJ-r36ZBqc-I\" alt=\"\"\/><\/figure>\n\n\n\n<p class=\"has-text-align-justify\">From this console, we should be able to manage computers, domains, users, groups, access rights, etc.<\/p>\n\n\n\n<p>To create a User, choose New and select User.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img src=\"https:\/\/lh3.googleusercontent.com\/TgpGL0AGUPTtrLWdAjJAugxkEBAVv7oLelf4jCvn9NTca2L9MqtTtvYRf4v1wQbQicqQ6iFFIet-QjCIPbxBLigyQ8zUOtxzbebwxEmz8L5L1fTzxOpiIhmQXTo1v-HbxHXqUX4o\" alt=\"\"\/><\/figure>\n\n\n\n<p class=\"has-text-align-justify\">Set a username and password under the Domain: ad.workfall.com<\/p>\n\n\n\n<p class=\"has-text-align-justify\">The User is successfully added to the Domain. To authenticate as the Domain user, log in to the Windows system using the domain credentials.<\/p>\n\n\n\n<h2>Conclusion<\/h2>\n\n\n\n<p class=\"has-text-align-justify\">In this blog, we have successfully implemented AWS Managed Microsoft Active Directory Domain Services and we have also launched a Windows EC2 Instance and joined the Instance with the AD Domain. Also, we have seen how to set up users in the Active Directory and how users can make use of domain credentials to log in to the system. In the upcoming blogs, we will see how we can make use of the AWS Managed Directory service to authenticate FSx for the Windows File server. Stay tuned to keep getting all updates about our upcoming new blogs on AWS and relevant technologies.<\/p>\n\n\n\n<p class=\"has-text-align-justify\">Meanwhile \u2026<\/p>\n\n\n\n<p class=\"has-text-align-justify\"><strong>Keep Exploring -&gt; Keep Learning -&gt; Keep Mastering<\/strong><\/p>\n\n\n\n<p class=\"has-text-align-justify\">This blog is part of our effort towards building a knowledgeable and kick-ass tech community. At <a href=\"https:\/\/www.workfall.com\/\">Workfall<\/a>, we strive to provide the best tech and pay opportunities to AWS-certified talents. If you\u2019re looking to work with global clients, build kick-ass products while making big bucks doing so, give it a shot at<a href=\"https:\/\/www.workfall.com\/partner\/\"> workfall.com\/partner<\/a> today.<\/p>\n","protected":false},"excerpt":{"rendered":"<p><span class=\"rt-reading-time\" style=\"display: block;\"><span class=\"rt-label rt-prefix\">Reading Time: <\/span> <span class=\"rt-time\">10<\/span> <span class=\"rt-label rt-postfix\">minutes<\/span><\/span> Currently, 95% of enterprises use Active Directory for authentication. Adopting cloud technology successfully necessitates taking into account on-premises IT infrastructure and applications. Active Directory architecture that is both reliable and secure is a vital IT infrastructure basis for businesses that run Windows applications. The directory service can be hosted in the on-premise data centers, but [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":594,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"spay_email":""},"categories":[2],"tags":[189,3,4,190,11,6],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v19.1 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>How to authenticate Windows EC2 Instance using AWS Managed Microsoft Active Directory? - The Workfall Blog<\/title>\n<meta name=\"description\" content=\"In this blog, we will demonstrate how to Authenticate Windows EC2 Instances using AWS Managed Microsoft Active Directory.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/learning.workfall.com\/learning\/blog\/authenticate-windows-ec2-instance-aws-managed-microsoft-active-directory\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"How to authenticate Windows EC2 Instance using AWS Managed Microsoft Active Directory? - The Workfall Blog\" \/>\n<meta property=\"og:description\" content=\"In this blog, we will demonstrate how to Authenticate Windows EC2 Instances using AWS Managed Microsoft Active Directory.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/learning.workfall.com\/learning\/blog\/authenticate-windows-ec2-instance-aws-managed-microsoft-active-directory\/\" \/>\n<meta property=\"og:site_name\" content=\"The Workfall Blog\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/facebook.com\/workfall\" \/>\n<meta property=\"article:published_time\" content=\"2021-11-11T05:38:19+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2025-08-20T11:27:33+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/ec2-18-141-20-153.ap-southeast-1.compute.amazonaws.com\/learning\/blog\/wp-content\/uploads\/2021\/11\/Directory-service.png\" \/>\n\t<meta property=\"og:image:width\" content=\"1200\" \/>\n\t<meta property=\"og:image:height\" content=\"628\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@workfall\" \/>\n<meta name=\"twitter:site\" content=\"@workfall\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Workfall\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"18 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Organization\",\"@id\":\"https:\/\/learning.workfall.com\/learning\/blog\/#organization\",\"name\":\"Workfall - Hire #Kickass Coders On Demand\",\"url\":\"https:\/\/learning.workfall.com\/learning\/blog\/\",\"sameAs\":[\"https:\/\/www.instagram.com\/workfall\/\",\"https:\/\/www.linkedin.com\/company\/workfall\/\",\"https:\/\/facebook.com\/workfall\",\"https:\/\/twitter.com\/workfall\"],\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/learning.workfall.com\/learning\/blog\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/i1.wp.com\/18.141.20.153\/learning\/blog\/wp-content\/uploads\/2021\/10\/cropped-WF_logo.png?fit=400%2C400\",\"contentUrl\":\"https:\/\/i1.wp.com\/18.141.20.153\/learning\/blog\/wp-content\/uploads\/2021\/10\/cropped-WF_logo.png?fit=400%2C400\",\"width\":400,\"height\":400,\"caption\":\"Workfall - Hire #Kickass Coders On Demand\"},\"image\":{\"@id\":\"https:\/\/learning.workfall.com\/learning\/blog\/#\/schema\/logo\/image\/\"}},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/learning.workfall.com\/learning\/blog\/#website\",\"url\":\"https:\/\/learning.workfall.com\/learning\/blog\/\",\"name\":\"The Workfall Blog\",\"description\":\"#Tech #Remote #Jobs\",\"publisher\":{\"@id\":\"https:\/\/learning.workfall.com\/learning\/blog\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/learning.workfall.com\/learning\/blog\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/learning.workfall.com\/learning\/blog\/authenticate-windows-ec2-instance-aws-managed-microsoft-active-directory\/#primaryimage\",\"url\":\"https:\/\/learning.workfall.com\/learning\/blog\/wp-content\/uploads\/2021\/11\/Directory-service.png\",\"contentUrl\":\"https:\/\/learning.workfall.com\/learning\/blog\/wp-content\/uploads\/2021\/11\/Directory-service.png\",\"width\":1200,\"height\":628,\"caption\":\"Authenticate Windows EC2 - AWS\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/learning.workfall.com\/learning\/blog\/authenticate-windows-ec2-instance-aws-managed-microsoft-active-directory\/#webpage\",\"url\":\"https:\/\/learning.workfall.com\/learning\/blog\/authenticate-windows-ec2-instance-aws-managed-microsoft-active-directory\/\",\"name\":\"How to authenticate Windows EC2 Instance using AWS Managed Microsoft Active Directory? - The Workfall Blog\",\"isPartOf\":{\"@id\":\"https:\/\/learning.workfall.com\/learning\/blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/learning.workfall.com\/learning\/blog\/authenticate-windows-ec2-instance-aws-managed-microsoft-active-directory\/#primaryimage\"},\"datePublished\":\"2021-11-11T05:38:19+00:00\",\"dateModified\":\"2025-08-20T11:27:33+00:00\",\"description\":\"In this blog, we will demonstrate how to Authenticate Windows EC2 Instances using AWS Managed Microsoft Active Directory.\",\"breadcrumb\":{\"@id\":\"https:\/\/learning.workfall.com\/learning\/blog\/authenticate-windows-ec2-instance-aws-managed-microsoft-active-directory\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/learning.workfall.com\/learning\/blog\/authenticate-windows-ec2-instance-aws-managed-microsoft-active-directory\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/learning.workfall.com\/learning\/blog\/authenticate-windows-ec2-instance-aws-managed-microsoft-active-directory\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/learning.workfall.com\/learning\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"How to authenticate Windows EC2 Instance using AWS Managed Microsoft Active Directory?\"}]},{\"@type\":\"Article\",\"@id\":\"https:\/\/learning.workfall.com\/learning\/blog\/authenticate-windows-ec2-instance-aws-managed-microsoft-active-directory\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/learning.workfall.com\/learning\/blog\/authenticate-windows-ec2-instance-aws-managed-microsoft-active-directory\/#webpage\"},\"author\":{\"@id\":\"https:\/\/learning.workfall.com\/learning\/blog\/#\/schema\/person\/cab8236044692bc5b27606b13167794a\"},\"headline\":\"How to authenticate Windows EC2 Instance using AWS Managed Microsoft Active Directory?\",\"datePublished\":\"2021-11-11T05:38:19+00:00\",\"dateModified\":\"2025-08-20T11:27:33+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/learning.workfall.com\/learning\/blog\/authenticate-windows-ec2-instance-aws-managed-microsoft-active-directory\/#webpage\"},\"wordCount\":1990,\"publisher\":{\"@id\":\"https:\/\/learning.workfall.com\/learning\/blog\/#organization\"},\"image\":{\"@id\":\"https:\/\/learning.workfall.com\/learning\/blog\/authenticate-windows-ec2-instance-aws-managed-microsoft-active-directory\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/learning.workfall.com\/learning\/blog\/wp-content\/uploads\/2021\/11\/Directory-service.png\",\"keywords\":[\"activedirectory\",\"AWS\",\"Cloud\",\"directoryservices\",\"ec2\",\"workfall\"],\"articleSection\":[\"AWS Cloud Computing\"],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/learning.workfall.com\/learning\/blog\/#\/schema\/person\/cab8236044692bc5b27606b13167794a\",\"name\":\"Workfall\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/learning.workfall.com\/learning\/blog\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/learning.workfall.com\/learning\/blog\/wp-content\/uploads\/2023\/09\/avatar_user_1_1693914404-96x96.png\",\"contentUrl\":\"https:\/\/learning.workfall.com\/learning\/blog\/wp-content\/uploads\/2023\/09\/avatar_user_1_1693914404-96x96.png\",\"caption\":\"Workfall\"},\"sameAs\":[\"https:\/\/www.workfall.com\"]}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"How to authenticate Windows EC2 Instance using AWS Managed Microsoft Active Directory? - The Workfall Blog","description":"In this blog, we will demonstrate how to Authenticate Windows EC2 Instances using AWS Managed Microsoft Active Directory.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/learning.workfall.com\/learning\/blog\/authenticate-windows-ec2-instance-aws-managed-microsoft-active-directory\/","og_locale":"en_US","og_type":"article","og_title":"How to authenticate Windows EC2 Instance using AWS Managed Microsoft Active Directory? - The Workfall Blog","og_description":"In this blog, we will demonstrate how to Authenticate Windows EC2 Instances using AWS Managed Microsoft Active Directory.","og_url":"https:\/\/learning.workfall.com\/learning\/blog\/authenticate-windows-ec2-instance-aws-managed-microsoft-active-directory\/","og_site_name":"The Workfall Blog","article_publisher":"https:\/\/facebook.com\/workfall","article_published_time":"2021-11-11T05:38:19+00:00","article_modified_time":"2025-08-20T11:27:33+00:00","og_image":[{"width":1200,"height":628,"url":"https:\/\/ec2-18-141-20-153.ap-southeast-1.compute.amazonaws.com\/learning\/blog\/wp-content\/uploads\/2021\/11\/Directory-service.png","type":"image\/png"}],"twitter_card":"summary_large_image","twitter_creator":"@workfall","twitter_site":"@workfall","twitter_misc":{"Written by":"Workfall","Est. reading time":"18 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Organization","@id":"https:\/\/learning.workfall.com\/learning\/blog\/#organization","name":"Workfall - Hire #Kickass Coders On Demand","url":"https:\/\/learning.workfall.com\/learning\/blog\/","sameAs":["https:\/\/www.instagram.com\/workfall\/","https:\/\/www.linkedin.com\/company\/workfall\/","https:\/\/facebook.com\/workfall","https:\/\/twitter.com\/workfall"],"logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/learning.workfall.com\/learning\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/i1.wp.com\/18.141.20.153\/learning\/blog\/wp-content\/uploads\/2021\/10\/cropped-WF_logo.png?fit=400%2C400","contentUrl":"https:\/\/i1.wp.com\/18.141.20.153\/learning\/blog\/wp-content\/uploads\/2021\/10\/cropped-WF_logo.png?fit=400%2C400","width":400,"height":400,"caption":"Workfall - Hire #Kickass Coders On Demand"},"image":{"@id":"https:\/\/learning.workfall.com\/learning\/blog\/#\/schema\/logo\/image\/"}},{"@type":"WebSite","@id":"https:\/\/learning.workfall.com\/learning\/blog\/#website","url":"https:\/\/learning.workfall.com\/learning\/blog\/","name":"The Workfall Blog","description":"#Tech #Remote #Jobs","publisher":{"@id":"https:\/\/learning.workfall.com\/learning\/blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/learning.workfall.com\/learning\/blog\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/learning.workfall.com\/learning\/blog\/authenticate-windows-ec2-instance-aws-managed-microsoft-active-directory\/#primaryimage","url":"https:\/\/learning.workfall.com\/learning\/blog\/wp-content\/uploads\/2021\/11\/Directory-service.png","contentUrl":"https:\/\/learning.workfall.com\/learning\/blog\/wp-content\/uploads\/2021\/11\/Directory-service.png","width":1200,"height":628,"caption":"Authenticate Windows EC2 - AWS"},{"@type":"WebPage","@id":"https:\/\/learning.workfall.com\/learning\/blog\/authenticate-windows-ec2-instance-aws-managed-microsoft-active-directory\/#webpage","url":"https:\/\/learning.workfall.com\/learning\/blog\/authenticate-windows-ec2-instance-aws-managed-microsoft-active-directory\/","name":"How to authenticate Windows EC2 Instance using AWS Managed Microsoft Active Directory? - The Workfall Blog","isPartOf":{"@id":"https:\/\/learning.workfall.com\/learning\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/learning.workfall.com\/learning\/blog\/authenticate-windows-ec2-instance-aws-managed-microsoft-active-directory\/#primaryimage"},"datePublished":"2021-11-11T05:38:19+00:00","dateModified":"2025-08-20T11:27:33+00:00","description":"In this blog, we will demonstrate how to Authenticate Windows EC2 Instances using AWS Managed Microsoft Active Directory.","breadcrumb":{"@id":"https:\/\/learning.workfall.com\/learning\/blog\/authenticate-windows-ec2-instance-aws-managed-microsoft-active-directory\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/learning.workfall.com\/learning\/blog\/authenticate-windows-ec2-instance-aws-managed-microsoft-active-directory\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/learning.workfall.com\/learning\/blog\/authenticate-windows-ec2-instance-aws-managed-microsoft-active-directory\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/learning.workfall.com\/learning\/blog\/"},{"@type":"ListItem","position":2,"name":"How to authenticate Windows EC2 Instance using AWS Managed Microsoft Active Directory?"}]},{"@type":"Article","@id":"https:\/\/learning.workfall.com\/learning\/blog\/authenticate-windows-ec2-instance-aws-managed-microsoft-active-directory\/#article","isPartOf":{"@id":"https:\/\/learning.workfall.com\/learning\/blog\/authenticate-windows-ec2-instance-aws-managed-microsoft-active-directory\/#webpage"},"author":{"@id":"https:\/\/learning.workfall.com\/learning\/blog\/#\/schema\/person\/cab8236044692bc5b27606b13167794a"},"headline":"How to authenticate Windows EC2 Instance using AWS Managed Microsoft Active Directory?","datePublished":"2021-11-11T05:38:19+00:00","dateModified":"2025-08-20T11:27:33+00:00","mainEntityOfPage":{"@id":"https:\/\/learning.workfall.com\/learning\/blog\/authenticate-windows-ec2-instance-aws-managed-microsoft-active-directory\/#webpage"},"wordCount":1990,"publisher":{"@id":"https:\/\/learning.workfall.com\/learning\/blog\/#organization"},"image":{"@id":"https:\/\/learning.workfall.com\/learning\/blog\/authenticate-windows-ec2-instance-aws-managed-microsoft-active-directory\/#primaryimage"},"thumbnailUrl":"https:\/\/learning.workfall.com\/learning\/blog\/wp-content\/uploads\/2021\/11\/Directory-service.png","keywords":["activedirectory","AWS","Cloud","directoryservices","ec2","workfall"],"articleSection":["AWS Cloud Computing"],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/learning.workfall.com\/learning\/blog\/#\/schema\/person\/cab8236044692bc5b27606b13167794a","name":"Workfall","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/learning.workfall.com\/learning\/blog\/#\/schema\/person\/image\/","url":"https:\/\/learning.workfall.com\/learning\/blog\/wp-content\/uploads\/2023\/09\/avatar_user_1_1693914404-96x96.png","contentUrl":"https:\/\/learning.workfall.com\/learning\/blog\/wp-content\/uploads\/2023\/09\/avatar_user_1_1693914404-96x96.png","caption":"Workfall"},"sameAs":["https:\/\/www.workfall.com"]}]}},"jetpack_featured_media_url":"https:\/\/learning.workfall.com\/learning\/blog\/wp-content\/uploads\/2021\/11\/Directory-service.png","jetpack-related-posts":[{"id":534,"url":"https:\/\/learning.workfall.com\/learning\/blog\/rich-and-highly-performant-file-systems-using-amazon-fsx\/","url_meta":{"origin":593,"position":0},"title":"How to launch and run feature-rich and highly performant file systems using Amazon FSx?","date":"November 10, 2021","format":false,"excerpt":"For a long time, we have been using the Samba File server to share files across servers, users, and applications. But there are certain limitations while running the Windows File server on the on-premise instance such as the hard disk will run out of space. So we have to actively\u2026","rel":"","context":"In &quot;AWS Cloud Computing&quot;","img":{"alt_text":"Launch and Run feature-rich and highly performant file systems using Amazon FSx","src":"https:\/\/i1.wp.com\/learning.workfall.com\/learning\/blog\/wp-content\/uploads\/2021\/11\/FSx.png?resize=350%2C200&ssl=1","width":350,"height":200},"classes":[]},{"id":239,"url":"https:\/\/learning.workfall.com\/learning\/blog\/how-to-set-up-aws-copilot-to-build-release-and-operate-containerized-applications-on-ecs-and-fargate-using-a-cli\/","url_meta":{"origin":593,"position":1},"title":"How to set up AWS Copilot to build, release and operate containerized applications on ECS and Fargate using a CLI?","date":"October 28, 2021","format":false,"excerpt":"AWS Copilot is a command line interface (CLI) that allows users to launch and manage containerized apps on AWS fast and efficiently. AWS Copilot offers a simple declarative set of commands, as well as examples and guided experiences to assist clients in deploying quickly. Copilot automates each stage of the\u2026","rel":"","context":"In &quot;AWS Cloud Computing&quot;","img":{"alt_text":"How to deploy a containerized Web Application using AWS Copilot","src":"https:\/\/i2.wp.com\/learning.workfall.com\/learning\/blog\/wp-content\/uploads\/2021\/10\/Amazon_Copilot-1200-x-628-px.png?resize=350%2C200&ssl=1","width":350,"height":200},"classes":[]},{"id":399,"url":"https:\/\/learning.workfall.com\/learning\/blog\/how-to-create-and-mount-an-amazon-efs-file-system-using-amazon-ec2-launch-instance-wizard\/","url_meta":{"origin":593,"position":2},"title":"How to create and mount an Amazon EFS file system using Amazon EC2 Launch Instance Wizard?","date":"November 3, 2021","format":false,"excerpt":"Sizing, configuring, and deploying AWS resources for third-party applications, such as SAP or SQL server is always challenging for you. Are you looking for a wizard who can help you with these challenging tasks?\u00a0 AWS Launch Wizard can help you in simplifying these tasks by offering a guided way of\u2026","rel":"","context":"In &quot;AWS Cloud Computing&quot;","img":{"alt_text":"How to create and mount an Amazon EFS file system using Amazon EC2 Launch Instance Wizard","src":"https:\/\/i2.wp.com\/learning.workfall.com\/learning\/blog\/wp-content\/uploads\/2021\/11\/Launch-Wizard.png?resize=350%2C200&ssl=1","width":350,"height":200},"classes":[]},{"id":467,"url":"https:\/\/learning.workfall.com\/learning\/blog\/15-awsome-years-of-amazon-ec2-and-still-going-strong\/","url_meta":{"origin":593,"position":3},"title":"15 AWSome years of Amazon EC2 and still going strong!","date":"November 9, 2021","format":false,"excerpt":"This year marks the 15th anniversary of Amazon EC2(Amazon Elastic Compute Cloud), marking a landmark milestone for both the firm and the computing industry it serves. The EC2 instance is at the heart of the AWS cloud platform, allowing users to rent storage, network connectivity, and computation resources. It's difficult\u2026","rel":"","context":"In &quot;AWS Cloud Computing&quot;","img":{"alt_text":"AWSome 15 Years of Amazon EC2","src":"https:\/\/i1.wp.com\/learning.workfall.com\/learning\/blog\/wp-content\/uploads\/2021\/11\/ec2_15yrs.png?resize=350%2C200&ssl=1","width":350,"height":200},"classes":[]},{"id":2167,"url":"https:\/\/learning.workfall.com\/learning\/blog\/deploy-a-yew-rust-application-on-an-aws-ec2-ubuntu-instance-nginx\/","url_meta":{"origin":593,"position":4},"title":"Deploy a Yew Rust Application on an AWS EC2 Ubuntu Instance & Nginx","date":"May 4, 2023","format":false,"excerpt":"After you've finished developing your Yew Rust application, it's time to make it available to your users. It is expected to be placed on a server someplace, either on a Cloud service provider or an on-premises server, for this purpose. This blog will go over how to launch your Yew\u2026","rel":"","context":"In &quot;Backend Development&quot;","img":{"alt_text":"Deploy a Yew Rust Application on an AWS EC2 Ubuntu Instance & Nginx","src":"https:\/\/i2.wp.com\/learning.workfall.com\/learning\/blog\/wp-content\/uploads\/2023\/05\/Cover-Images_Part2-1.png?resize=350%2C200&ssl=1","width":350,"height":200},"classes":[]},{"id":1494,"url":"https:\/\/learning.workfall.com\/learning\/blog\/amazon-eks-clusters-locally-on-aws-outposts\/","url_meta":{"origin":593,"position":5},"title":"Amazon EKS Clusters Locally on AWS Outposts","date":"October 25, 2022","format":false,"excerpt":"AWS recently announced the availability of Amazon EKS local clusters on AWS Outposts. It means that now users can run the Amazon EKS cluster entirely on Outposts, including the Kubernetes control plane and nodes. To make things easier, AWS now allows you to host your entire Amazon EKS cluster on\u2026","rel":"","context":"In &quot;AWS Cloud Computing&quot;","img":{"alt_text":"Amazon EKS Clusters Locally on AWS Outposts","src":"https:\/\/i1.wp.com\/learning.workfall.com\/learning\/blog\/wp-content\/uploads\/2022\/10\/Cover-Images_Part2-1-2.png?resize=350%2C200&ssl=1","width":350,"height":200},"classes":[]}],"_links":{"self":[{"href":"https:\/\/learning.workfall.com\/learning\/blog\/wp-json\/wp\/v2\/posts\/593"}],"collection":[{"href":"https:\/\/learning.workfall.com\/learning\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/learning.workfall.com\/learning\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/learning.workfall.com\/learning\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/learning.workfall.com\/learning\/blog\/wp-json\/wp\/v2\/comments?post=593"}],"version-history":[{"count":4,"href":"https:\/\/learning.workfall.com\/learning\/blog\/wp-json\/wp\/v2\/posts\/593\/revisions"}],"predecessor-version":[{"id":1834,"href":"https:\/\/learning.workfall.com\/learning\/blog\/wp-json\/wp\/v2\/posts\/593\/revisions\/1834"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/learning.workfall.com\/learning\/blog\/wp-json\/wp\/v2\/media\/594"}],"wp:attachment":[{"href":"https:\/\/learning.workfall.com\/learning\/blog\/wp-json\/wp\/v2\/media?parent=593"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/learning.workfall.com\/learning\/blog\/wp-json\/wp\/v2\/categories?post=593"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/learning.workfall.com\/learning\/blog\/wp-json\/wp\/v2\/tags?post=593"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}