Resetting a Simple AD user password
Users must adhere to password policies as defined in the Active Directory. Sometimes this can get the best of users, including the Active Directory administrator, and they forget their password. When this happens, you can quickly reset the user's password using Amazon Directory Service if the user resides in Simple AD.
You must be signed in as a user with the necessary permissions to reset passwords. For more information about permissions, see Overview of managing access permissions to your Amazon Directory Service resources.
You can reset the password for any user in your Active Directory with the following exceptions:
-
You can reset the password for any user within the Organizational Unit (OU) that is based off of the NetBIOS name you used when you created your Active Directory. For example, if you followed the procedure in Create your Simple AD, your NetBIOS name would be CORP and the users passwords you could reset would be members of Corp/Users OU.
-
You cannot reset the password of any user outside of the OU that is based off the NetBIOS name you used when you created your Active Directory. For more information about the OU structure for Simple AD, see What gets created with your Simple AD.
-
You cannot reset the password for any user that is a member of two domains. You also cannot reset the password of any user that is a member of either the Domain Admins or Enterprise Admins group except for the Administrator user.
-
You cannot reset the password for any user that is a member of either the Domain Admins or Enterprise Admins group except for the administrator user.
You can use any of the following methods to reset a user password:
-
Amazon Web Services Management Console
-
Amazon CLI