- 최신
- 최다 투표
- 가장 많은 댓글
The part we were missing is adding IP routing (on-premise is in public IP CIDR range) under the Networking&Security tab in Directory Service, you can read it at https://docs.aws.amazon.com/directoryservice/latest/admin-guide/ms_ad_setup_trust.html at number 10 under "Create, Verify, or Delete a Trust Relationship".
In addition if anyone runs into an issue creating a trust. It's good to note that the Managed AD Security Group assigned to your directory only allows outbound communications to itself. If you need to create a trust, you will need to add a rule that allows outbound communications to the domain controllers that you are creating a trust with this. This needs to be done before creating your conditional forwarder as well, or you will get a failure in creating the trust due to communication issues.
관련 콘텐츠
- 질문됨 6달 전
- AWS 공식업데이트됨 10달 전