AWS re:Post을(를) 사용하면 다음에 동의하게 됩니다. AWS re:Post 이용 약관
AWS re:Postre:Post

Self Service with AWS Managed Active Directory

0

Hi community,

We have a web-based application running in standard n-tier architecture (EC2 instance web server, EC2 instance DB server, application/network load balancers etc) with authentication handled by AWS Managed Active Directory.

My question: is there a method/mechanism/app/tool that allows "self-service" for users hosted in that directory? Eg, if a user forgets their password or it expires, how can we handle them requesting it be reset?

Something similar to ManageEngine AD Self Service Plus is what I'm thinking but am wondering if AWS has anything they provide? I'm leaning towards possibly some sort of integration with AWS Identity Center but that looks like it needs Organizations to be setup and I don't know if that's in our scope at this time.

Many thanks,

IanM

주제
보안, 신원 및 규정 준수AWS Well-Architected 프레임워크
태그
AWS 디렉터리 서비스보안
언어
English
IanM
질문됨 7달 전250회 조회
1개 답변
0

Hi,

A proposal in case, you're not heavily bound to AD: on AWS, self-service authentication is provided by AWS Cognito. 50'000 users per month are in the free-tier.

See https://aws.amazon.com/cognito/ or for the features in detail: https://aws.amazon.com/cognito/details/

This post will propose you a very incremental way to migrate: https://aws.amazon.com/blogs/mobile/migrating-users-to-amazon-cognito-user-pools/

Using this mechanism will allow you to test on a limited number of users very safely.

Best,

Didier

profile pictureAWS
전문가
Didier_Durand
답변함 7달 전
  • IanM
    7달 전

    Hi Didier,

    Thanks for your response, much appreciated! Unfortunately we are somewhat bound to AD; can Cognito interface with AD and provide the self service portion there, do you know?

    Many thanks,

    IanM

로그인하지 않았습니다. 로그인해야 답변을 게시할 수 있습니다.

좋은 답변은 질문에 명확하게 답하고 건설적인 피드백을 제공하며 질문자의 전문적인 성장을 장려합니다.

질문 답변하기에 대한 가이드라인

관련 콘텐츠