Viewing and updating an AWS Managed Microsoft AD group's details - AWS Directory Service
Viewing a group's detailUpdating a group's details

Viewing and updating an AWS Managed Microsoft AD group's details

Use the following procedure to view or update an AWS Managed Microsoft AD group's details with user and group management or AWS Directory Service Data in either the AWS Management Console or AWS CLI.

Viewing an AWS Managed Microsoft AD group's detail

You can view a group's details in the AWS Management Console.

Before you begin either procedure, you need to complete the following:
AWS Management Console

You can view an AWS Managed Microsoft AD group's details in the AWS Management Console.

To view AWS Managed Microsoft AD group's details with the AWS Management Console

  1. Open the AWS Directory Service console at https://console.aws.amazon.com/directoryservicev2/.

  2. From the navigation pane, choose Active Directory, and then choose Directories. You're directed to the Directories screen where you can view a list of directories in your AWS Region.

  3. Choose a directory. You're directed to the Directory details screen.

  4. Choose Group. The tab shows a list of groups in your AWS Region.

  5. Choose a group. To find groups, enter the group name in the search box under the Groups section. You're directed to the Group details screen. The Group details screen shows the following information:

    • Member tab lists the users and child groups that are members of your group.

    • Parent groups tab lists the parent groups that your group is a member of.

    • Properties tab lists the group properties (such as primary information like group name, group display name, etc.).

AWS CLI

You can view and update an AWS Managed Microsoft AD group's details with the AWS Directory Service Data CLI.

To view an AWS Managed Microsoft AD group's details with the AWS CLI

The following describes how to view an AWS Managed Microsoft AD group's details with the AWS CLI.

  • To view a group's details, open the AWS CLI, and run the following command, replacing the Directory ID and group name with your AWS Managed Microsoft AD Directory ID and group name: 

aws ds-data describe-group --directory-id d-1234567890 --sam-account-name "your-group-name"
To view an AWS Managed Microsoft AD group's group members with the AWS CLI

The following describes how to view an AWS Managed Microsoft AD group's members with the AWS CLI.

  • To view a group's details, open the AWS CLI, and run the following command, replacing the Directory ID and group name with your AWS Managed Microsoft AD Directory ID and group name: 

aws ds-data list-group-members --directory-id d-1234567890 --sam-account-name "your-group-name"

Updating an AWS Managed Microsoft AD group's details

Use the following procedure to update an AWS Managed Microsoft AD group's details with user and group management or AWS Directory Service Data in either the AWS Management Console or AWS CLI.

Before you begin either procedure, you need to complete the following:
AWS Management Console

You can update a group's details with the AWS Management Console. For more information, see AWS Directory Service Data attributes and Group type and group scope

To update an AWS Managed Microsoft AD group's details with the AWS Management Console

  1. Open the AWS Directory Service console at https://console.aws.amazon.com/directoryservicev2/.

  2. From the navigation pane, choose Active Directory, and then choose Directories. You're directed to the Directories screen where you can view a list of directories in your AWS Region.

  3. Choose a directory. You're directed to the Directory details screen.

  4. Choose Group. The tab shows a list of groups in your AWS Region.

  5. Choose a group. To find groups, enter the group name in the search box under the Groups section. You're directed to the Group details screen.

  6. To edit users and child groups that are members of your group, choose Members. From this tab, you can add and remove users and child groups from your group. For more information, see Adding and removing members to groups and groups to groups.

  7. To edit parent groups that your group is a member of, choose Parent groups. From this tab, you can add and remove your group from parent groups. For more information, see Adding and removing members to groups and groups to groups.

  8. To edit your group properties, choose Properties, and then choose Edit. Or choose Actions, and then choose Edit group. Make and review your updates, and then choose Save.

AWS CLI

The following describes how to format a request that updates an AWS Managed Microsoft AD group's details with the AWS Directory Service Data CLI.

When you update a group, you must include your directory ID number and group name. You also must include the update type and attribute you want to update in your request, such as a group email address with the EmailAddress parameter. For more information, see AWS Directory Service Data attributes and Group type and group scope.

  • To update an AWS Managed Microsoft AD group's details with the AWS CLI

    To update a group's details, open the AWS CLI, and run the following command, replacing the Directory ID, group name, update type, and attribute with your AWS Managed Microsoft AD Directory ID, group name, and desired update type and attribute: 

aws ds-data update-group --directory-id d-1234567890 --sam-account-name "your-group-name" --update-type "your-update-type" --group-scope "your-attribute-value"