Home › Forums › AWS › AWS Certified Security – Specialty › Active Directory Trust › Reply To: Active Directory Trust
-
The method of Domain trusts has been consistent (though poorly explained) since NT 4.0.
Example: “I am trusting you with my car”, where “I” am the owner (Domain Admin) of a “car” (resource in the Resource Domain) and “you” are a user (in the Users Domain)– The car resides in the Resource Domain.
– You reside in the Users domain. You are in the Users Domain & want access to the resource
– “I” am admin of the Resource Domain, and I provide access to you in the users domain by creating the one-way trust.
The users are on-premise, the resources are in AWS, and the one-way trust is provided from the AWS AD –> to the on-premise AD
Hence: “Set up a one-way trust relationship from the new Active Directory in AWS to the existing Active Directory service in the on-premises data center.” is the correct answer.