diff --git a/modules/security_identity_compliance/ds-adconnector/main.tf b/modules/security_identity_compliance/ds-adconnector/main.tf
index a113523..e540046 100644
--- a/modules/security_identity_compliance/ds-adconnector/main.tf
+++ b/modules/security_identity_compliance/ds-adconnector/main.tf
@@ -1,8 +1,7 @@
 
 resource "aws_directory_service_directory" "connector" {
   name        = var.adc-domainname
-  alias       = var.adc-alias # required by enable-sso
-  enable_sso  = var.adc-enable-sso
+  enable_sso  = false # enabling this results in error when terraform is ran in member accounts
   password    = var.adc-service-account-password
   size        = var.adc-size
   type        = "ADConnector"
diff --git a/modules/security_identity_compliance/ds-adconnector/outputs.tf b/modules/security_identity_compliance/ds-adconnector/outputs.tf
index 6289d15..f4b88da 100644
--- a/modules/security_identity_compliance/ds-adconnector/outputs.tf
+++ b/modules/security_identity_compliance/ds-adconnector/outputs.tf
@@ -6,6 +6,6 @@ output security-group-id {
   value = aws_directory_service_directory.connector.security_group_id
 }
 
-output connect-settings {
-  value = aws_directory_service_directory.connector.connect_settings
+output customer-dns-ip {
+  value = aws_directory_service_directory.connector.connect_settings[*].customer_dns_ips
 }
\ No newline at end of file
diff --git a/modules/security_identity_compliance/ds-adconnector/variables.tf b/modules/security_identity_compliance/ds-adconnector/variables.tf
index 8716492..f98f043 100644
--- a/modules/security_identity_compliance/ds-adconnector/variables.tf
+++ b/modules/security_identity_compliance/ds-adconnector/variables.tf
@@ -5,6 +5,4 @@ variable "adc-dns-ips" {}
 variable "adc-service-account-username" {}
 variable "adc-subnet-ids" {}
 variable "adc-vpc-id" {}
-variable "adc-alias" {}
-variable "adc-enable-sso" {}
 variable "default-tags" {}
\ No newline at end of file