View a markdown version of this page

Enabling or disabling user and group management or Amazon Directory Service Data - Amazon Directory Service
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

Enabling or disabling user and group management or Amazon Directory Service Data

To use user and group management or Amazon Directory Service Data, it must be enabled. Once enabled, you can manage users and groups from the Amazon Web Services Management Console, Amazon CLI, or Amazon Tools for PowerShell.

Important

Enabling Amazon Directory Service Data

Use the following procedure to enable Amazon Directory Service Data for an existing Amazon Managed Microsoft AD with the Amazon Web Services Management Console, Amazon CLI, or Amazon Tools for PowerShell.

Amazon Web Services Management Console

You can enable user and group management with the Amazon Web Services Management Console.

To enable user and group management
  1. Open the Amazon Directory Service console at https://console.amazonaws.cn/directoryservicev2/.

  2. On the Directory details page, to enable user and group management, select Enable.

  3. In the Enable user and group management dialog box, select Enable.

Amazon CLI

The following describes how to format a request that enables the Amazon Directory Service Data CLI. You must include your Directory ID number in your request.

Note

This command uses the aws ds namespace.

To enable Amazon Directory Service Data CLI
  • Open the Amazon CLI, and run the following command with your Directory ID:

aws ds enable-directory-data-access --directory-id d-1234567890

For more information, see enable-directory-data-access.

PowerShell
Note

This command uses the AWS.Tools.DirectoryService module.

To enable Directory Service Data with Tools for PowerShell
  • Open PowerShell, and run the following command with your Directory ID:

Enable-DSDirectoryDataAccess -DirectoryId d-1234567890

For more information, see Enable-DSDirectoryDataAccess.

Disabling Amazon Directory Service Data

Use the following procedure to disable Amazon Directory Service Data for an existing Amazon Managed Microsoft AD with the Amazon Web Services Management Console, Amazon CLI, or Amazon Tools for PowerShell.

Amazon Web Services Management Console

You can disable user and group management with the Amazon Web Services Management Console.

To disable user and group management
  1. Open the Amazon Directory Service console at https://console.amazonaws.cn/directoryservicev2/.

  2. On the Directory details page, to disable user and group management, select Disable.

  3. In the Disable user and group management dialog box, select Disable.

Amazon CLI

The following describes how to format a request that disables the Amazon Directory Service Data CLI. You must include your Directory ID number in your request.

Note

This command uses the aws ds namespace.

To disable Amazon Directory Service Data CLI
  • Open the Amazon CLI, and run the following command with your Directory ID:

aws ds disable-directory-data-access --directory-id d-1234567890

For more information, see disable-directory-data-access.

PowerShell
Note

This command uses the AWS.Tools.DirectoryService module.

To disable Directory Service Data with Tools for PowerShell
  • Open PowerShell, and run the following command with your Directory ID:

Disable-DSDirectoryDataAccess -DirectoryId d-123456789

For more information, see Disable-DSDirectoryDataAccess.