AWS Directory Service
Administration Guide (Version 1.0)

Manage Fine-Grained Password Policies in Microsoft AD

AWS Microsoft AD enables you to define and assign different password and account lockout policies (also referred to as fine-grained password policies) for groups of users you manage in your AWS Microsoft AD domain.

For example, you can assign a less strict policy setting for employees that have access to low sensitivity information only. For senior managers who regularly access confidential information you can apply more strict settings.

AWS provides a set of fine-grained password policies in AWS Microsoft AD that you can configure and assign to your groups. To configure the policies, you can use standard Microsoft policy tools such as Active Directory Administrative Center (ADAC). To get started with the Microsoft policy tools, see Installing the Active Directory Administration Tools.

Related AWS Security Blog Article