What is Amazon WorkMail? - Amazon WorkMail

What is Amazon WorkMail?

Amazon WorkMail is a secure, managed business email and calendaring service with support for existing desktop and mobile email clients. Amazon WorkMail users can access their email, contacts, and calendars using Microsoft Outlook, their browser, or their native iOS and Android email applications. You can integrate Amazon WorkMail with your existing corporate directory and control both the keys that encrypt your data and the location in which your data is stored.

For a list of supported AWS Regions and endpoints, see AWS Regions and Endpoints.

Amazon WorkMail system requirements

Amazon WorkMail works with all major mobile devices and operating systems that support the Exchange ActiveSync protocol. Supported mobile platforms include iOS, Android, and Windows Phone. Users of macOS can add their Amazon WorkMail account to their Mail, Calendar, and Contacts apps.

If you have a valid Microsoft Outlook license, you can access Amazon WorkMail using the following versions of Microsoft Outlook:

  • Outlook 2007, Outlook 2010, Outlook 2013, Outlook 2016, and Outlook 2019

  • Outlook 2010 and Outlook 2013 Click-to-Run

  • Outlook for Mac 2011, Outlook 2016 for Mac, and Outlook 2019 for Mac

The Amazon WorkMail web application is accessed at https://alias.awsapps.com/mail. Amazon WorkMail can also be used with IMAP clients. For more information, see Setting up email clients for Amazon WorkMail in the Amazon WorkMail User Guide.

Amazon WorkMail concepts

The terminology and concepts that are central to your understanding and use of Amazon WorkMail are described below.


A tenant setup for Amazon WorkMail.


A globally unique name to identify your organization. The alias is used to access the Amazon WorkMail web application (https://alias.awsapps.com/mail).


The web address that comes after the @ symbol in an email address. You can add a domain that receives mail and delivers it to mailboxes in your organization.

Test mail domain

A domain is automatically configured during setup that can be used for testing Amazon WorkMail. The test mail domain is alias.awsapps.com and is used as the default domain if you don't configure your own domain. The test mail domain is subject to different limits. For more information, see Amazon WorkMail quotas.


An AWS Simple AD, AWS Managed AD, or AD Connector created in AWS Directory Service. If you create an organization using the Amazon WorkMail Quick setup, we create a WorkMail directory for you. You can't view a WorkMail directory in AWS Directory Service.


A user created in the AWS Directory Service. When a user is enabled for Amazon WorkMail, they receive their own mailbox to access. When a user is disabled, they can't access Amazon WorkMail.


A group used in AWS Directory Service. A group can be used as a distribution list or a security group in Amazon WorkMail. Groups don't have their own mailboxes.


A resource represents a meeting room or equipment resource that can be booked by Amazon WorkMail users.

Mobile device policy

Various IT policy rules that control the security features and behavior of a mobile device.

The following services are used along with Amazon WorkMail:

  • AWS Directory Service—You can integrate Amazon WorkMail with an existing AWS Simple AD, AWS Managed AD, or AD Connector. Create a directory in the AWS Directory Service and then enable Amazon WorkMail for this directory. After you've configured this integration, you can choose which users you would like to enable for Amazon WorkMail from a list of users in your existing directory, and users can log in using their existing Active Directory credentials. For more information, see AWS Directory Service Administration Guide.

  • Amazon Simple Email Service—Amazon WorkMail uses Amazon SES to send all outgoing email. The test mail domain and your domains are available for management in the Amazon SES console. There is no cost for outgoing email sent from Amazon WorkMail. For more information, see Amazon Simple Email Service Developer Guide.

  • AWS Identity and Access Management—The AWS Management Console requires your user name and password so that any service you use can determine whether you have permission to access its resources. We recommend that you avoid using AWS account credentials to access AWS because AWS account credentials can't be revoked or limited in any way. Instead, we recommend that you create an IAM user and add the user to an IAM group with administrative permissions. You can then access the console using the IAM user credentials.

    If you signed up for AWS but have not created an IAM user for yourself, you can create one using the IAM console. For more information, see Create individual IAM users in the IAM User Guide.

  • AWS Key Management Service—Amazon WorkMail is integrated with AWS KMS for encryption of customer data. Key management can be performed from the AWS KMS console. For more information, see What is the AWS Key Management Service in the AWS Key Management Service Developer Guide.

Amazon WorkMail pricing

With Amazon WorkMail, there are no upfront fees or commitments. You pay only for active user accounts. For more specific information about pricing, see Pricing.

Amazon WorkMail resources

The following related resources can help you as you work with this service.

  • Classes & Workshops – Links to role-based and specialty courses, in addition to self-paced labs to help sharpen your AWS skills and gain practical experience.

  • AWS Developer Center – Explore tutorials, download tools, and learn about AWS developer events.

  • AWS Developer Tools – Links to developer tools, SDKs, IDE toolkits, and command line tools for developing and managing AWS applications.

  • Getting Started Resource Center – Learn how to set up your AWS account, join the AWS community, and launch your first application.

  • Hands-On Tutorials – Follow step-by-step tutorials to launch your first application on AWS.

  • AWS Whitepapers – Links to a comprehensive list of technical AWS whitepapers, covering topics such as architecture, security, and economics and authored by AWS Solutions Architects or other technical experts.

  • AWS Support Center – The hub for creating and managing your AWS Support cases. Also includes links to other helpful resources, such as forums, technical FAQs, service health status, and AWS Trusted Advisor.

  • AWS Support – The primary webpage for information about AWS Support, a one-on-one, fast-response support channel to help you build and run applications in the cloud.

  • Contact Us – A central contact point for inquiries concerning AWS billing, account, events, abuse, and other issues.

  • AWS Site Terms – Detailed information about our copyright and trademark; your account, license, and site access; and other topics.