Al usar AWS re:Post, aceptas las AWS re:Post Términos de uso
AWS re:Postre:Post

Running ActiveDirectory Module for Powershell in Lambda

1

We are trying to see if it is possible to run powershell scripts inside of Lambdas functions that are able to create users and groups and update passwords. Is it possible to import Microsoft's AD module into a Lambda? https://docs.microsoft.com/en-us/powershell/module/activedirectory/?view=windowsserver2022-ps Thanks!

Temas
Sin servidorCálculo
Etiquetas
AWS LambdaAWS Tools for Windows PowerShell
Idioma
English
Vincent
preguntada hace 2 años1344 visualizaciones
4 Respuestas
0

While the ActiveDirectory module technically imports in PowerShell 6+, most cmdlets unfortunately require Windows so this is not currently possible

AWS
Trent
respondido hace un año
0

I have not tried this on Lambda, but I have used the PowerShell module https://github.com/jformacek/S.DS.P to successfully interact with ActiveDirectory from pwsh7 on Mac and Linux. It will not work on pwsh6 because of a dependency in the underlying .NET Framework in the pwsh 7.3 release.

rePost-User-6083957
respondido hace un año
0

Is it still impossible to use ActiveDirectory Tools with Lambda?

https://aws.amazon.com/de/blogs/compute/extending-powershell-on-aws-lambda-with-other-services/

Mike
respondido hace 5 meses
-1

Yes, it is possible to run PowerShell scripts inside of Lambdas functions. The document [1] explain how common programming patterns and core concepts apply when you author Lambda function code in PowerShell.

Kindly refer to the document [2] that describes how to create a new IAM group and a new IAM user and then add the user to the group using the AWS Tools for PowerShell. Document [3] provides instructions to Set an Initial Password for an IAM User. This document explains the user creation with respect to IAM service.

Please refer to the document [4] which explains that, SAML support in the AWS Tools for PowerShell lets you provide your users federated access to AWS services. SAML is an XML-based, open-standard format for transmitting user authentication and authorization data between services; in particular, between an identity provider (such as Active Directory Federation Services), and a service provider (such as AWS). For more information about SAML and how it works, see SAML on Wikipedia, or SAML Technical Specifications at the Organization for the Advancement of Structured Information Standards (OASIS) website. SAML support in the AWS Tools for PowerShell is compatible with SAML 2.0.

References

[1] Building Lambda functions with PowerShell - https://docs.aws.amazon.com/lambda/latest/dg/lambda-powershell.html

[2] Create New IAM Users and Groups - https://docs.aws.amazon.com/powershell/latest/userguide/pstools-iam-new-user-group.html

[3] Set an Initial Password for an IAM User - https://docs.aws.amazon.com/powershell/latest/userguide/pstools-iam-set-pw.html

[4] Configuring Federated Identity with the AWS Tools for PowerShell - https://docs.aws.amazon.com/powershell/latest/userguide/saml-pst.html

profile pictureAWS
Ann
respondido hace 2 años

No has iniciado sesión. Iniciar sesión para publicar una respuesta.

Una buena respuesta responde claramente a la pregunta, proporciona comentarios constructivos y fomenta el crecimiento profesional en la persona que hace la pregunta.

Pautas para responder preguntas

Contenido relevante