AWS Directory Service
Administration Guide (Version 1.0)

Update Your AD Connector Service Account Credentials in AWS Directory Service

The AD Connector credentials you provide in AWS Directory Service represent the service account that is used to access your existing on-premises directory. You can modify the service account credentials in AWS Directory Service by performing the following steps.

Note

If single sign-on is enabled for the directory, AWS Directory Service must transfer the service principal name (SPN) from the current service account to the new service account. If the current service account does not have permission to delete the SPN or the new service account does not have permission to add the SPN, you are prompted for the credentials of a directory account that does have permission to perform both actions. These credentials are only used to transfer the SPN and are not stored by the service.

To update your AD Connector service account credentials in AWS Directory Service

  1. In the AWS Directory Service console navigation pane, select Directories.

  2. Click the directory ID link for your directory.

  3. Select the Connector Account tab.

  4. Enter the new user name and password, and click Update Directory.