Unable to use AD groups after enabling Configurable AD Sync in SSO
We are using AWS SSO with AWS Managed Microsoft AD as source for quite some time. There was a notification toe enable "Configurable AD Sync" and we enabled it today. Per the information on the AD Sync page, all the existing user and group assignment should not be affected after the change.
We see the permissions assigned to individual users are unaffected. But the permission sets assigned to the AD groups are no longer working. When I try to change the permission set of an AD group, I get "Unexpected error Received a 404 status error: null".
Also, there are 15 groups shown in AWS SSO > Settings > Manage sync > Groups. But on the assign permission set page, there is only one group available. We are not sure if there is any step missing in this configuration. Could someone please point us towards the correct direction?
We created a support ticket with AWS and they informed us that the groups will not sync if the group description has any of these four special characters
After removing the special characters from our AD groups and waiting for the groups to sync, we are able to see the groups again in AWS SSO.
Is AWS Managed Microsoft AD billed separately from Amazon WorkSpaces?Accepted Answerasked 2 years ago
How can I use Azure AD credentials for SSH into AWS EC2 Instance?Accepted Answerasked 4 months ago
AWS SSO with Microsoft AD as IdPasked 5 months ago
AWS Managed AD servicesasked 25 days ago
MFA for AWS Managed Microsoft ADAccepted Answerasked 3 months ago
Unable to use AD groups after enabling Configurable AD Sync in SSOAccepted Answerasked 3 months ago
AWS SSO ERROR 403 with AD connectorasked 15 days ago
[Announcement] Run Your Microsoft SharePoint and SQL Server Always On Availability Groups in the AWS Cloud More Easily by Using AWS Directory Service for Microsoft Active Directoryasked 5 years ago
Joining an AWS Managed Microsoft AD to an existing domainAccepted Answerasked a year ago
AWS AD Connect Replication permissionsasked 3 years ago