ELI5: AWS Accounts
I come from an Azure background and I'm having trouble understanding accounts (not user accounts). My brain wants to map each AWS feature to an Azure feature but this one escapes me. Are accounts like Management Groups or Resource Groups or RBAC roles (in Azure) or Security Groups (in Azure AD)? Can someone give me a simple explanation of accounts?
An AWS account also acts as an isolation boundary for resources, permissions and access policies. When you need to isolate applications into different accounts due to either compliance, data classification or other reasons, you can use AWS Organizations to define and organize multiple accounts into a way that reflects your organizational hierarchy. AWS Organizations --> Organizational Units (OU) --> OUs or accounts.
AWS account is an organizational construct. You could create different accounts for different departments, like application-account, network-account, security-account etc.
These links have good info: https://aws.amazon.com/organizations/faqs/ https://aws.amazon.com/organizations/
Relevant questions
How to remove member accounts from Organizations?
asked 4 months agoELI5: AWS Accounts
asked 5 months agoAWS SSO + Azure AD, no way to access AWS Console?
Accepted Answerasked 5 months agoHow do I consolidate billing emails for my Organization's accounts?
asked 7 months agoCan Elasticsearch Service RIs be moved across accounts within an organization?
Accepted Answerasked 2 years agoHow to manage ECS Clusters across accounts?
asked 7 months agoAppConfig and Multiple Accounts
asked 5 months ago30 day limit - Delete an Organization with Many Accounts
asked a month agoOrganization Level Admin Accounts
asked 2 days agoSES from Azure
asked a year ago