Create an AD Connector in the master account
export ACTIVE_DIRECTORY_DOMAIN_NAME=""
export ACTIVE_DIRECTORY_SERVICE_ACCOUNT_USERNAME=""
export ACTIVE_DIRECTORY_SERVICE_ACCOUNT_PASSWORD=""
export VPC_ID=""
export SUBNET_A=""
export SUBNET_B=""
export DNS_IP1=""
export DNS_IP2=""
AWS_PROFILE=myorg-master aws ds connect-directory --region eu-central-1 --name ${ACTIVE_DIRECTORY_DOMAIN_NAME} --password ${ACTIVE_DIRECTORY_SERVICE_ACCOUNT_PASSWORD} --size Small --connect-settings VpcId=${VPC_ID},SubnetIds=${SUBNET_A},${SUBNET_B},CustomerDnsIps=${DNS_IP1},${DNS_IP2},CustomerUserName=${ACTIVE_DIRECTORY_SERVICE_ACCOUNT_USERNAME}
Go to https://eu-central-1.console.aws.amazon.com/directoryservicev2/home to see if everything worked as expected.