Select your cookie preferences

We use essential cookies and similar tools that are necessary to provide our site and services. We use performance cookies to collect anonymous statistics, so we can understand how customers use our site and make improvements. Essential cookies cannot be deactivated, but you can choose “Customize” or “Decline” to decline performance cookies.

If you agree, AWS and approved third parties will also use cookies to provide useful site features, remember your preferences, and display relevant content, including relevant advertising. To accept or decline all non-essential cookies, choose “Accept” or “Decline.” To make more detailed choices, choose “Customize.”

Preferences
Contact Us
Feedback
AWS Documentation
Create an AWS Account
Disabling an AWS Managed Microsoft AD user - AWS Directory Service

Disabling an AWS Managed Microsoft AD user

PDFRSS

Use the following procedure to disable an AWS Managed Microsoft AD user with user and group management or AWS Directory Service Data in either the AWS Management Console, AWS CLI, or AWS Tools for PowerShell.

Important

When you disable a user's account, the user loses any permissions to access their account and applications.

Before you begin either procedure, you need to complete the following:
AWS Management Console

You can disable an AWS Managed Microsoft AD user account in the AWS Management Console.

To disable an AWS Managed Microsoft AD user account with the AWS Management Console

  1. Open the AWS Directory Service console at https://console.aws.amazon.com/directoryservicev2/.

  2. From the navigation pane, choose Active Directory, and then choose Directories. You're directed to the Directories screen where you can view a list of directories in your AWS Region.

  3. Choose a directory. You're directed to the Directory details screen.

  4. Choose Users. The tab shows a list of users in your directory.

  5. Choose the user whose account you want to disable. You're directed to the User details screen.

  6. Choose Actions. Then choose Disable user account and Disable user account again.

Note

To re-enable your user's account, you must reset the user's password. For more information, see Resetting and enabling an AWS Managed Microsoft AD user's password.

AWS CLI

The following describes how to format a request that disables an AWS Managed Microsoft AD user account with the AWS Directory Service Data CLI.

To disable an AWS Managed Microsoft AD user account with the AWS CLI

  • Open the AWS CLI, and run the following command, replacing the Directory ID and username with your AWS Managed Microsoft AD Directory ID and username: 

aws ds-data disable-user --directory-id d-1234567890 --sam-account-name "jane.doe"
Note

To re-enable your user account, you must reset the user's password. For more information, see Resetting and enabling an AWS Managed Microsoft AD user's password.

AWS Tools for PowerShell

The following describes how to format a request that disables an AWS Managed Microsoft AD user account with AWS Tools for PowerShell.

To disable an AWS Managed Microsoft AD user account with AWS Tools for PowerShell

  • Open PowerShell;, and run the following command, replacing the Directory ID and username with your AWS Managed Microsoft AD Directory ID and username: 

Disable-DSDUser -DirectoryId d-1234567890 -SAMAccountName "jane.doe"
Note

To re-enable your user account, you must reset the user's password. For more information, see Resetting and enabling an AWS Managed Microsoft AD user's password.

anchoranchoranchor

You can disable an AWS Managed Microsoft AD user account in the AWS Management Console.

To disable an AWS Managed Microsoft AD user account with the AWS Management Console

  1. Open the AWS Directory Service console at https://console.aws.amazon.com/directoryservicev2/.

  2. From the navigation pane, choose Active Directory, and then choose Directories. You're directed to the Directories screen where you can view a list of directories in your AWS Region.

  3. Choose a directory. You're directed to the Directory details screen.

  4. Choose Users. The tab shows a list of users in your directory.

  5. Choose the user whose account you want to disable. You're directed to the User details screen.

  6. Choose Actions. Then choose Disable user account and Disable user account again.

Note

To re-enable your user's account, you must reset the user's password. For more information, see Resetting and enabling an AWS Managed Microsoft AD user's password.

Previous topic:

Deleting a user

Need help?

PrivacySite termsCookie preferences
© 2025, Amazon Web Services, Inc. or its affiliates. All rights reserved.