Monitoring DNS Server with Microsoft Event Viewer - Amazon Directory Service
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

Monitoring DNS Server with Microsoft Event Viewer

You can audit your Amazon Managed Microsoft AD DNS events, making it easier to identify and troubleshoot DNS issues. For example, if a DNS record is missing, you can use the DNS audit event log to help identify the root cause and fix the issue. You can also use DNS audit event logs to improve security by detecting and blocking requests from suspicious IP addresses.

To do that, you must be logged on with the Admin account or with an account that is a member of the Amazon Domain Name System Administrators group. For more information about this group, see What gets created with your Amazon Managed Microsoft AD Active Directory.

To access Event Viewer for your Amazon Managed Microsoft AD DNS

  1. Open the Amazon EC2 console at https://console.amazonaws.cn/ec2/.

  2. In the left navigation pane, choose Instances.

  3. Locate an Amazon EC2 instance that is joined to your Amazon Managed Microsoft AD directory. Select the instance and then choose Connect.

  4. Once connected to the Amazon EC2 instance, open the Start menu and select the Windows Administrative Tools folder. Within the Administrative Tools folder, select Event Viewer.

  5. In the Event Viewer window, choose Action and then choose Connect to Another Computer.

  6. Select Another computer, type one of your Amazon Managed Microsoft AD DNS servers name or IP address, and choose OK.

  7. In the left pane, navigate to Applications and Services Logs>Microsoft>Windows>DNS-Server, and then select Audit.