1개 답변
- 최신
- 최다 투표
- 가장 많은 댓글
1
You can create a "DHCP option set" for your VPC containing the IPs for your Domain controllers.
Otherwise provide the IPs in the wizard while creating the FSX
If you are doing this from cloudformation you can also enter your domain controllers IPs in "DnsIps" under "SelfManagedActiveDirectoryConfiguration"
FSx1:
Type: "AWS::FSx::FileSystem"
Properties:
FileSystemType: "WINDOWS"
StorageCapacity:
Ref: StorageCapacity
SubnetIds:
- Ref: Subnet1
- Ref: Subnet2
SecurityGroupIds:
- yoursecgroup
WindowsConfiguration:
WeeklyMaintenanceStartTime:
DailyAutomaticBackupStartTime:
ThroughputCapacity:
AutomaticBackupRetentionDays: #
CopyTagsToBackups: true
DeploymentType: "MULTI_AZ_1"
PreferredSubnetId:
SelfManagedActiveDirectoryConfiguration:
DnsIps:
- #.#.#.#
- #.#.#.#
DomainName:
OrganizationalUnitDistinguishedName:
Password: !Join [ "", ["{{resolve:secretsmanager:",!Ref "SecretObject",":SecretString:password}}"]] # '{{resolve:secretsmanager:<SecretObject>:SecretString:password}}'
UserName: !Join [ "", ["{{resolve:secretsmanager:",!Ref "SecretObject",":SecretString:username}}"]] # '{{resolve:secretsmanager:<SecretObject>:SecretString:username}}'
Also, see the password and Username parameters consumed from secrets manager (you need to pass that to join nodes to your domain)
For any of those options make sure that those IPs are reachable in UDP/TCP 53 from your VPC
답변함 2일 전
관련 콘텐츠
- AWS 공식업데이트됨 4년 전