Use Case 5: Extend your on-premises Active Directory to the Amazon Cloud - Amazon Directory Service
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

Use Case 5: Extend your on-premises Active Directory to the Amazon Cloud

If you already have an Active Directory infrastructure and want to use it when migrating Active Directory-aware workloads to the Amazon Cloud, Amazon Managed Microsoft AD can help. You can use Active Directory trusts to connect Amazon Managed Microsoft AD to your existing Active Directory. This means your users can access Active Directory-aware and Amazon applications with their on-premises Active Directory credentials, without needing you to synchronize users, groups, or passwords.

For example, your users can sign in to the Amazon Web Services Management Console and Amazon WorkSpaces by using their existing Active Directory user names and passwords. Also, when you use Active Directory-aware applications such as SharePoint with Amazon Managed Microsoft AD, your logged-in Windows users can access these applications without needing to enter credentials again.

You can also migrate your on-premises Active Directory domain to Amazon to be free of the operational burden of your Active Directory infrastructure using the Active Directory Migration Toolkit (ADMT) along with the Password Export Service (PES) to perform the migration.