AWS Directory Service
Administration Guide (Version 1.0)

The AWS Documentation website is getting a new look!
Try it now and let us know what you think. Switch to the new look >>

You can return to the original look by selecting English in the language selector above.

Update Your AD Connector Service Account Credentials in AWS Directory Service

The AD Connector credentials you provide in AWS Directory Service represent the service account that is used to access your existing on-premises directory. You can modify the service account credentials in AWS Directory Service by performing the following steps.


If single sign-on is enabled for the directory, AWS Directory Service must transfer the service principal name (SPN) from the current service account to the new service account. If the current service account does not have permission to delete the SPN or the new service account does not have permission to add the SPN, you are prompted for the credentials of a directory account that does have permission to perform both actions. These credentials are only used to transfer the SPN and are not stored by the service.

To update your AD Connector service account credentials in AWS Directory Service

  1. In the AWS Directory Service console navigation pane, select Directories.

  2. Choose the directory ID link for your directory.

  3. On the Directory details page, in the Connector account credentials section, choose Update.

  4. In the Update service account credentials dialog, type the new user name and password, and then choose Update Directory.