A company is migrating a legacy .NET application to AWS. The application uses Windows Authentication and relies on Active Directory for user authentication. The company wants to minimize changes to the application code. Which AWS service should be used to integrate Active Directory with the migrated application?
Trap 1: Amazon Cognito
Designed for web and mobile identity federation, not Windows Authentication.
Trap 2: AD Connector
Only proxies to on-premises AD, not suitable if on-prem AD is decommissioned.
Trap 3: Simple AD
Does not support Windows Authentication or many AD features needed.
- A
AWS Directory Service for Microsoft Active Directory
Provides full managed AD with native support for Windows Authentication.
- B
Amazon Cognito
Why wrong: Designed for web and mobile identity federation, not Windows Authentication.
- C
AD Connector
Why wrong: Only proxies to on-premises AD, not suitable if on-prem AD is decommissioned.
- D
Simple AD
Why wrong: Does not support Windows Authentication or many AD features needed.