Salta al contenuto
Usando AWS re:Post, accetti AWS re:Post Termini di utilizzo
AWS re:Postre:Post
Informazioni su re:Post

Streamlined SaaS onboarding for AWS Organizations

0

Does anyone know if there is a way to streamline customer onboarding at the AWS organization level? This AWS blog post provided an approach limited to single-account use cases. I want to automate the onboarding process for a SaaS application in AWS organizations so that the role created for the SaaS is at the organization level, allowing it to assume a role across selected child accounts. https://aws.amazon.com/blogs/apn/new-aws-cloudformation-stack-quick-create-links-further-simplify-customer-onboarding/

EDIT

So, my thoughts about a possible workflow is as follows:

  1. A Cloudformation template creates a role (super/org role, if you will) that can be assumed at the organization level. The role has the privilege to assume access to any child account.
  2. A process discovers all child accounts and asks the owner which accounts should be onboarded.
  3. The owner selects preferred accounts and onboarding proceeds.
  4. On-demand onboarding can be done for any other account using the already-created role.
Argomenti
Gestione e amministrazioneSaaS su AWSSicurezza, identità e conformità
Tag
Organizzazioni AWSGestore account AWSSaaS su AWSSicurezza, identità e conformità
Lingua
English
posta 2 anni fa398 visualizzazioni
1 Risposta
0

Hi,

You should give a read to the other blog posts:

They go on a slightly different path than what you describe but what they suggest to remain "Well-Architected" is useful.

Best,

Didier

ESPERTO
con risposta 2 anni fa

Accesso non effettuato. Accedi per postare una risposta.

Una buona risposta soddisfa chiaramente la domanda, fornisce un feedback costruttivo e incoraggia la crescita professionale del richiedente.

Contenuto pertinente