AWS Certified Advanced Networking - Specialty: Amazon Workspaces Authentication Services

Authentication Services for Amazon Workspaces

Prev Question Next Question

Question

Which of the following can directly serve as authentication services for Amazon Workspaces? Choose 3 answers from the options given below.

Answers

Explanations

Click on the arrows to vote for the correct answer

A. B. C. D.

Answer - A,B and C.

The AWS documentation mentions the following.

Amazon WorkSpaces uses a directory to store and manage information for your WorkSpaces and users.

You can use one of the following options:

AD Connector - Use your existing on-premises Microsoft Active Directory.

Users can sign into their WorkSpaces using their on-premises credentials and access on-premises resources from their WorkSpaces.

Microsoft AD - Create a Microsoft Active Directory hosted on AWS.

Simple AD - Create a directory that is compatible with Microsoft Active Directory, powered by Samba 4, and hosted on AWS.

Cross trust - Create a trust relationship between your Microsoft AD directory and your on-premises domain.

For more information on AWS Workspaces and Active Directory, please visit the below link:

http://docs.aws.amazon.com/workspaces/latest/adminguide/manage-workspaces-directory.html

The correct answers are A, B, and C: AD Connector, Microsoft AD hosted on AWS, and Simple AD can directly serve as authentication services for Amazon Workspaces.

Amazon Workspaces is a fully managed, secure desktop-as-a-service (DaaS) solution that allows users to access their desktops from anywhere, at any time, using any device. To ensure security and compliance, Amazon Workspaces supports multiple authentication methods, including using Microsoft Active Directory (AD) domain credentials.

Here are the explanations for the correct answers:

A. AD Connector: AD Connector is a directory gateway that allows you to connect your on-premises Active Directory to AWS. With AD Connector, your users can use their existing AD credentials to access Amazon Workspaces. This is a popular option for organizations that want to extend their existing AD infrastructure to the cloud.

B. Microsoft AD hosted on AWS: Microsoft AD is a fully managed Microsoft Active Directory service that is hosted on AWS. You can use Microsoft AD to manage Amazon Workspaces user accounts, passwords, and group memberships. This option is useful for organizations that don't have an existing AD infrastructure and want to use a fully managed service.

C. Simple AD: Simple AD is a managed directory service that is compatible with Microsoft AD. You can use Simple AD to create and manage user accounts and groups, and to enable single sign-on (SSO) for Amazon Workspaces. This option is useful for organizations that don't have a complex AD infrastructure and want a simple and cost-effective solution.

D. DirectConnect: DirectConnect is a service that allows you to establish a dedicated network connection between your on-premises environment and AWS. DirectConnect is not an authentication service, so it cannot be used to directly serve as an authentication service for Amazon Workspaces.

In summary, AD Connector, Microsoft AD hosted on AWS, and Simple AD are the three options that can be used as authentication services for Amazon Workspaces.