Our first task will be to create the necessary groups in Active Directory:
- Go ahead and create a group called AWSPowerUser, as shown in the following screenshot:
- Do the same for the AWSReadOnly group:
- We're now going to create a couple of users. The first one is Lucille, as shown in the following screenshot:
- The next user will be Buster. Let's add him now:
- Lucille is going to be our power user, so we'll add her to the AWSPowerUser group:
- We don't really trust Buster at all. True to his name, he's prone to breaking things. Let's add him to the AWSReadOnly group: