By using AWS re:Post, you agree to the Terms of Use
AWS re:Postre:Post

MFA for AWS Managed Microsoft AD

0

Here https://docs.aws.amazon.com/directoryservice/latest/admin-guide/ms_ad_getting_started_prereqs.html , in Multi-factor authentication prerequisites it is said that : To support multi-factor authentication with your AWS Managed Microsoft AD directory, you must configure either your on-premises or cloud-based Remote Authentication Dial-In User Service (RADIUS) server in the following way so that it can accept requests from your AWS Managed Microsoft AD directory in AWS. Does the AWS provide "cloud-based Remote Authentication Dial-In User Service (RADIUS) server" service? Or we really need to setup something our own? Cant we have the same MFA solution, as in the default for AWS SSO "Aws sso identity store"?

Topics
Security, Identity, & Compliance
Tags
AWS Directory ServiceAWS IAM Identity CenterMulti-factor Authentication
Language
English
Joann Babak
asked 2 years ago451 views
1 Answer
1
Accepted Answer

For Managed AD you must deploy a RADIUS server, you can do so on an EC2 instance in your environment if you'd like but it doesn't have a native solution built in.

profile pictureAWS
EXPERT
Rob_H
answered 2 years ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content