Skip to content
By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post
About re:Post

Enable IAM principals to access Billing in AWS Org member accounts

0

Given:

  1. Only roots can enable "IAM User and Role Access to Billing Information"
  2. New member accounts are created with root creds disabled.

Does it mean that I have to go through incredibly tedious process of enabling root, attaching MFA, resetting password and then rolling it all back just to enable this one single option?

Am I correct? I desperately want a simpler way

Topics
Management & GovernanceSecurity, Identity, & Compliance
Tags
AWS Identity and Access ManagementAWS Organizations
Language
English
asked 8 months ago233 views
2 Answers
0

If you created the member account using Organizations you should be able to access the member accounts using the assumed role "OrganizationAccountAccessRole" which will have full admin rights and should be able to enable billing access in the member account.

https://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_accounts_access-cross-account-role.html

AWS
answered 8 months ago
0

Hi THere

Yes you will need to enable COst Explorer as root for each account. Here are some alternatives

AWS
EXPERT
answered 6 months ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Relevant content