My Admin Account (and Root Account) do not have full permissions

Thank you! This is very helpful and makes sense, but where do I go to actually see if an SPC is denying the policy even in my root/admin accounts? Is there a specific setting? I followed your link to the articles, but I'm struggling with finding out how to correct the permissions. Thank you!!

Hi AlexC. Access the SCPs from the AWS Organizations console. The steps are here [1].

[1] https://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_scps_create.html

Hi, Jose! Thanks for your response. When I click "Organization" (upper right-hand side of the screen), I get a page about what organizations are. On the left-hand side of that page is an option for "Invitations." I click on that and it says there are no invitations. I don't think I have any organizations assigned to any of my accounts (root or admin).

Hi, there! I'm still really struggling with this. Can I get additional direction and ideas as to what to do? Thank you!

Jose- I used Incognito to access the portal. I went to:

Billing and Cost Management

It shows "Month-to-date Cost - Access Denied."

I clicked on "Access Denied"

A window surfaced that featured text to give to my "Administrator" (even though I am the administrator :)

Here is the text: User: [my user account number is here] Service: [Cost Explorer] Name: [AccessDeniedException] HTTP status code: [400] Context: [IAM user access not activated] Request ID: [this is a unique number I didn't want to cut/paste into this message]

Any thoughts? Thanks again for your help!