Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions,
see Getting Started with Amazon Web Services in China
(PDF).
Enabling or disabling user and group management or Amazon Directory Service Data
To use user and group management or Amazon Directory Service Data, it must be enabled. Once enabled, you can manage
users and groups from the Amazon Web Services Management Console, Amazon CLI, or Amazon Tools for PowerShell.
Enabling Amazon Directory Service Data
Use the following procedure to enable Amazon Directory Service Data for an existing
Amazon Managed Microsoft AD with the Amazon Web Services Management Console, Amazon CLI, or Amazon Tools for PowerShell.
- Amazon Web Services Management Console
-
You can enable user and group management with the Amazon Web Services Management Console.
To enable user and group management
-
Open the Amazon Directory Service console at https://console.amazonaws.cn/directoryservicev2/.
-
On the Directory details page, to enable
user and group management, select Enable.
-
In the Enable user and group management dialog box, select
Enable.
- Amazon CLI
-
The following describes how to format a request that enables the Amazon Directory Service Data CLI. You
must include your Directory ID number in your request.
This command uses the aws ds namespace.
To enable Amazon Directory Service Data CLI
aws ds enable-directory-data-access --directory-id d-1234567890
For more information, see enable-directory-data-access.
- PowerShell
-
To enable Directory Service Data with Tools for PowerShell
Enable-DSDirectoryDataAccess -DirectoryId d-1234567890
For more information, see Enable-DSDirectoryDataAccess.
Disabling Amazon Directory Service Data
Use the following procedure to disable Amazon Directory Service Data for an existing
Amazon Managed Microsoft AD with the Amazon Web Services Management Console, Amazon CLI, or Amazon Tools for PowerShell.
- Amazon Web Services Management Console
-
You can disable user and group management with the Amazon Web Services Management Console.
To disable user and group management
-
Open the Amazon Directory Service console at https://console.amazonaws.cn/directoryservicev2/.
-
On the Directory details page, to disable
user and group management, select Disable.
-
In the Disable user and group management dialog box, select
Disable.
- Amazon CLI
-
The following describes how to format a request that disables the Amazon Directory Service Data CLI. You
must include your Directory ID number in your request.
This command uses the aws ds namespace.
To disable Amazon Directory Service Data CLI
aws ds disable-directory-data-access --directory-id d-1234567890
For more information, see disable-directory-data-access.
- PowerShell
-
To disable Directory Service Data with Tools for PowerShell
Disable-DSDirectoryDataAccess -DirectoryId d-123456789
For more information, see Disable-DSDirectoryDataAccess.