On premise AD migration to AWS Managed Microsoft AD

aws-directory-service

Short answer is no. One thing to realize is that the managed AD in AWS has specific use cases and isn't meant to be a replacement of your AD that sits onprem: https://docs.aws.amazon.com/directoryservice/latest/admin-guide/ms_ad_use_cases.html

You can't just go into managed AD and start promoting DCs and extending the schema - you won't have those privileges. indeed that's why it's managed by AWS and you have a delegated privileged account with which you can work that has limited permissions.

What I would recommend is setting up a managed AD in AWS and orienting yourself and you will quickly realize what you can't and can do. My clients mainly use it to create a one way trust back on the on-prem AD to provide SSO for workspaces and other services such as RDS.

Related

Enabling only TLS1.2 on Ubuntu 16.04 w/ Apache 2.4
Deploying apps to a Google Cloud Engine VM instance
IPv4 Forwarding (NAT) only works after toggling IPv4 forwarding to off then on
How to use different network interfaces for different users?
How to run Ghost and PrestaShop on the same domain, when hosted on different providers?
Restart Django/uWSGI vassal in uWSGI emperor mode
Problem with symbolic links in FTP client
Can I set dmarc to tell receiver to fail if no DKIM signature provided in email?
How often do apps go on sale in the App Store?
Resetting Advertising ID on iPad does not work?
Toggling between chunk of input in iterm2 with "Alt + arrow left/right" writes "[D" instead jumping from chunk to chunk
Restore previous-released OS version(mojave) from catalina public beta