What is AWS Launch Wizard for Active Directory? - AWS Launch Wizard

What is AWS Launch Wizard for Active Directory?

AWS Launch Wizard for Active Directory is a service that applies AWS cloud application best practices to guide you through setting up a new Active Directory infrastructure, or adding domain controllers to an existing infrastructure, either in the AWS Cloud or on premises. The deployment environment includes existing VPCs, security groups, and AWS Identity and Access Management (IAM) roles. You can set up a new Active Directory infrastructure with two to three domain controllers, or you can add up to three domain controllers to your existing Active Directory infrastructure for each AWS Region.

Launch Wizard reduces the time that it takes to set up an Active Directory infrastructure and deploy self-managed domain controllers to the cloud or on premises. You input your domain controller requirements, including number of nodes and connectivity, on the service console, and AWS Launch Wizard identifies the right AWS resources to deploy your self-managed domain controllers. AWS Launch Wizard provides an estimated cost of deployment, and gives you the ability to modify your resources and instantly view the updated cost assessment. When you approve, AWS Launch Wizard provisions and configures the selected resources in a few hours to create fully-functioning, production-ready domain controllers.

After you deploy your self-managed domain controllers, they are ready to use and can be accessed on the Amazon Elastic Compute Cloud (Amazon EC2) console.

Supported operating systems

AWS Launch Wizard supports the following operating systems:

  • Windows Server 2019

  • Windows Server 2016

Domain controller launch limits

You can launch up to three domain controllers from a single Launch Wizard deployment per each AWS Region. If you want to add more domain controllers, you can launch additional stacks and add them to the same Active Directory Domain Services infrastructure.

AWS Regions

Launch Wizard uses AWS Secrets Manager during the provisioning of self-managed domain controllers into an environment. These services are not supported in all AWS Regions. For a current list of supported Regions, see the Service endpoints and quotas.