Join On Premise Workstations To AWS Managed AD

What I am trying to do is use the aws managed AD as a stand alone AD domain to use for on prem workstations to log into windows on and manage windows permissions. The issue I am having is on prem workstations are not locating the domain after I update the dns records on the network interface. The process that I am using to add the on premise workstations to the domain is updating the network interfaces dns's to aws managed dns, and then trying to update the domain from workgroup. Please keep in mind I am logged into Client VPN during this whole process. When I do this I get an error the domain controller cannot be found: An error occurred when DNS was queried for the service location (SRV) resource record used to locate an Active Directory Domain Controller (AD DC) for domain 'domainName.com'. I am able to ping, and to DNS lookup finding the ec2. The setup: I have a aws managed Active Directory, standard version, and the AD being managed on a domain joined EC2 running Windows Server 2022. I had to manually join the ec2 as the domain join option on creation did not work. The AD is currently in my private subnets on 2 AZ's with the default dc security group settings. Currently I am using Client VPN to access the VPC, specifically the private az1 the AD is setup on. Once the VPN is on I am able to ping and use dns lookup to find the ec2 from my on premise workstation. I do not have a on premise AD or domain controller, I plan on aws managed AD to do that lifting. I do realize that if I am able to get this to work windows would need to cache the login for off site users until it connects to vpn. Eventually I will setup site to site, just not right now. As far as security groups and ACL's, I have tried opening the private subnet route table all traffic to quad zeros, same on the security group while I diagnose. I have checked if the windows firewall on the workstation and on the ec2, and it is not the culprit. To be clear, there is no existing domain outside of this aws managed ad and ec2, no on premise AD or DC, I want aws to handle all that. To summarize I want to add on prem workstations to the aws AD domain so that I may sign into windows using aws AD. If anyone is able to help that's awesome, even can or cannot be done is apprciated.