In the Active Directory, you will need to assign the user's attribute 'altSecurityIdentities' with a value that's the role name in AWS. For instance, if you want to give a user a role called 'admin' in AWS, then you will assign the user's attribute 'altSecurityIdentities' with the value 'admin. You do this by using an AD tool such as ADEdit.
