Step 2: Share your directory - Amazon Directory Service
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

Step 2: Share your directory

Use the following procedures to begin the directory sharing workflow from within the directory owner account.

Note

Directory sharing is a Regional feature of Amazon Managed Microsoft AD. If you are using Multi-Region replication, the following procedures must be applied separately in each Region. For more information, see Global vs Regional features.

To share your directory from the directory owner account

  1. Sign into the Amazon Web Services Management Console with administrator credentials in the directory owner account and open the Amazon Directory Service console at https://console.amazonaws.cn/directoryservicev2/.

  2. In the navigation pane, choose Directories.

  3. Choose the directory ID of the Amazon Managed Microsoft AD directory that you want to share.

  4. On the Directory details page, do one of the following:

    • If you have multiple Regions showing under Multi-Region replication, select the Region where you want to share your directory, and then choose the Scale & share tab. For more information, see Primary vs additional Regions.

    • If you do not have any Regions showing under Multi-Region replication, choose the Scale & share tab.

  5. In the Shared directories section, choose Actions, and then choose Create new shared directory.

  6. On the Choose which Amazon Web Services accounts to share with page, choose one of the following sharing methods depending on your business needs:

    1. Share this directory with Amazon Web Services accounts inside your organization – With this option you can select the Amazon Web Services accounts you want to share your directory with from a list showing all the Amazon Web Services accounts inside your Amazon organization. You must enable trusted access with Amazon Directory Service before you share a directory. For more information, see How to enable or disable trusted access.

      Note

      To use this option, your organization must have All features enabled, and your directory must be in the organization management account.

      1. Under Amazon Web Services accounts in your organization, select the Amazon Web Services accounts that you want to share the directory with and click Add.

      2. Review the pricing details, and then choose Share.

      3. Proceed to Step 4 in this guide. Because all Amazon Web Services accounts are in the same organization, you do not need to follow Step 3.

    2. Share this directory with other Amazon Web Services accounts - With this option, you can share a directory with accounts inside or outside your Amazon organization. You can also use this option when your directory is not a member of an Amazon organization and you want to share with another Amazon Web Services account.

      1. In Amazon Web Services account ID(s), enter all the Amazon Web Services account IDs that you want to share the directory with, and then click Add.

      2. In Send a note, type a message to the administrator in the other Amazon Web Services account.

      3. Review the pricing details, and then choose Share.

      4. Proceed to Step 3.

Next Step

Step 3: Accept shared directory invite - Optional