Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

Amazon Private CA Connector for Active Directory

What is Amazon Private CA Connector for Active Directory

Amazon Private CA can issue and manage certificates required by Amazon Managed Microsoft AD. Using the Amazon Private CA Connector for Active Directory (Connector for AD), you can replace on-premises enterprise or other third-party CAs with a managed private CA that you own, providing certificate enrollment to users, groups, and machines that are managed by your AD.

You can use the Connector for AD with Amazon Managed Microsoft AD to eliminate on-premises infrastructure by migrating your AD and public key infrastructure to the cloud. For customers looking to use Amazon Private CA with their on-premises AD, this feature also integrates with Amazon Managed Microsoft AD Connector.

Are You a First-Time Connector for AD User?

If you are a first-time user of Connector for AD, we recommend that you begin by reading the following sections:

Accessing Connector for AD

You can access Connector for AD through the console, Amazon CLI, and APIs. You can get access to the connector in the console from the Amazon Private CA console, from your Amazon Directory Service console, or by searching for Connector for AD in the Amazon Web Services Management Console search bar.

Pricing for Connector for AD

Connector for AD is offered as a feature of Amazon Private CA at no additional cost. You only pay for the private certificate authorities and the certificates you issue through them.

For the latest Amazon Private CA pricing information, see Amazon Private Certificate Authority Pricing. You can also use the Amazon pricing calculator to estimate costs.