DirectoryConfig - Amazon AppStream 2.0


Describes the configuration information required to join fleets and image builders to Microsoft Active Directory domains.



The fully qualified name of the directory (for example,

Type: String

Required: Yes


The certificate-based authentication properties used to authenticate SAML 2.0 Identity Provider (IdP) user identities to Active Directory domain-joined streaming instances. Fallback is turned on by default when certificate-based authentication is Enabled . Fallback allows users to log in using their AD domain password if certificate-based authentication is unsuccessful, or to unlock a desktop lock screen. Enabled_no_directory_login_fallback enables certificate-based authentication, but does not allow users to log in using their AD domain password. Users will be disconnected to re-authenticate using certificates.

Type: CertificateBasedAuthProperties object

Required: No


The time the directory configuration was created.

Type: Timestamp

Required: No


The distinguished names of the organizational units for computer accounts.

Type: Array of strings

Length Constraints: Maximum length of 2000.

Required: No


The credentials for the service account used by the fleet or image builder to connect to the directory.

Type: ServiceAccountCredentials object

Required: No

See Also

For more information about using this API in one of the language-specific AWS SDKs, see the following: