-
Hello marijohn,
Thank you for posting here.
According to the AWS Documentation:
“Before your EC2 client instances and managed services are able to authenticate and join the AWS Managed Microsoft AD, they must resolve the directory’s fully qualified domain name (FQDN). On the flip side, the DNS service running on the Directory Service is NOT aware of any other AWS Services that exist in the VPC such as PrivateLink Endpoints, Private Hosted Zones, Amazon EFS, etc.”
–(https://aws.amazon.com/blogs/networking-and-content-delivery/integrating-your-directory-services-dns-resolution-with-amazon-route-53-resolvers/) see also attached image plsTherefore, you would need an outbound endpoint to forward and resolve custom domain names inside your VPC.
I hope this helps. If you have more question, pls don’t hesitate to ask.
Regards,
Neil @ Tutorials Dojo
