Enhance security of your AWS app integration with AWS Managed Microsoft AD
Microsoft Workloads on AWS Blog
The article provides guidance on enhancing security when using a two-way trust between a self-managed Microsoft Active Directory and AWS Managed Microsoft AD for accessing AWS applications.
Specifically, the article covers:
- Introduction to using AWS Managed Microsoft AD with a two-way trust for accessing AWS applications
- Solution overview and prerequisites
- Configuring selective authentication on self-managed Active Directory
- Identifying AWS application-specific service accounts
- Granting least privilege "allowed to authenticate" permission to AWS application service accounts
- Cleanup and conclusion
The AWS News Feed is currently looking for gold sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.
Related articles
Aug 1
2025
2025
Extend your Active Directory domain to AWS with AWS Managed Microsoft AD (Hybrid Edition)
May 4
2024
2024
Providing self-service multi-account access to AWS Managed Microsoft AD
Sep 9
2025
2025
AWS Managed Microsoft AD adds LDAPS and Smart Card support using AWS Private CA
Apr 20
2026
2026
AWS Managed Microsoft AD is now available on Windows functional level 2016
The AWS News Feed is currently looking for silver sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.