AWS Directory Service
Seamlessly migrate AD-dependent workloads to AWS with security and scalability
Benefits of Directory Service
Simplified Workload Integration and Cloud Migration
Easily integrate your existing Active Directory (AD) with AWS cloud services like Amazon RDS, FSx, and EC2. Create, extend, or connect AD to the cloud in just a few clicks, allowing your users to access cloud resources using their familiar AD credentials.
Security and Compliance
Benefit from end-to-end encryption for your sensitive data, using EBS encryption and network layer encryption together with the AWS Nitro System. Meet a wide range of compliance requirements, including SOC, PCI, HIPAA, and FedRAMP.
Scalability and Reliability
Offload the management of your Active Directory infrastructure, ensuring high availability and accessibility, even during regional failures or disasters. Improve operational efficiency through autonomous management tasks.
Native Microsoft Active Directory on Windows Server
Leverage your existing AD skills, applications, and policies, while benefiting from a fully managed, native Windows Server-based Active Directory. Maintain a consistent user experience and management approach across on-premises and cloud environments.
Why use Directory Service?
AWS Directory Service provides a comprehensive, cloud-native solution to simplify AD-dependent workload integration, enhance security and compliance, and streamline cloud migration. It offers a fully managed, native Microsoft Active Directory without AD infrastructure management overhead. It enables organizations to leverage their existing AD investments, skills, and applications while creating new directories, extending existing AD, or establishing secure connections between different AD environments.
This allows seamless authentication with AWS resources like Amazon EC2 instances and managed services like RDS and FSx. Your users can access AWS applications using familiar credentials, ensuring a consistent experience across on-premises and cloud environments, while benefiting from the scalability, reliability, and security of AWS. 
Use cases
Simplified Workload Integration and Cloud Migration
Migrate existing and deploy new AD-dependent workloads in the cloud to enable seamless access to cloud-hosted applications and services like Amazon RDS, Amazon FSx, and Amazon EC2.
Quickly deploy new cloud workloads by leveraging the seamless domain join capabilities to your AWS Managed Microsoft AD or existing AD using AD Connector and AWS Managed Microsoft AD (Hybrid Edition).
Integrate your existing AD identities with cloud applications like Amazon WorkSpaces, Amazon QuickSight, Amazon Connect, and AWS License Manager to boost productivity and streamline access.
Security and Compliance
Safeguard your organization's sensitive data by leveraging the end-to-end encryption provided by the AWS Nitro System.
Achieve compliance with industry standards like SOC, PCI, HIPAA, and FedRAMP to meet your regulatory requirements.
Centralize identity and access management across your on-premises and cloud environments to enhance security posture.
Scalability and Reliability
Ensure high availability and accessibility of your directory services by leveraging the reliable AWS infrastructure, including multi-region deployments and in-country Availability Zones.
Increase operational efficiency by offloading the management of backup, restoration, patching, and upgrading tasks for your Active Directory.
Adopt a modular, decoupled approach to Active Directory management by deploying resource forests, which limit the blast radius and empower independent teams, while maintaining trusted connections to your on-premises AD.
Native Microsoft Active Directory on Windows Server
Provide a familiar, native Active Directory experience for your users and IT administrators, leveraging their existing skills and expertise.
Ensure a consistent management approach and user experience across your on-premises and cloud-based Active Directory deployments.
Seamlessly integrate your legacy AD-dependent applications and workloads with the cloud-hosted Active Directory service.