Before going ahead, we'll need the following pieces of info:
- The Fully Qualified Domain Name (FQDN) for your directory (for example, megacorp.com).
- A password for administering your directory. This password corresponds to the administrator user that will be created on your behalf. Note that the password needs to be between 8-64 characters, and will also need to contain one character from three of the following four groups:
- Lowercase letters
- Uppercase letters
- Numbers
- Non-alphanumeric characters
- The ID of the VPC that we're deploying to.
- The IDs of two subnets in this VPC. These subnets need to be in different availability zones.
- The size of the directory that you'd like to deploy. You can choose between small and large.
A domain controller is going to be deployed in each of the two subnets that you've chosen. They'll be communicating with each other on a fairly large number of ports. Ideally, these subnets would exist in the same tier in your VPC, and by extension, would not have any NACLs (short for Network Access Control Lists), which would stop the controllers from talking with each other.
If for some reason, you're restricting traffic from using NACLs within your VPC tiers, you will want to refer to the AWS docs for a list of which ports to allow. For more details, visit http://docs.aws.amazon.com/directoryservice/latest/admin-guide/prereq_simple.html.