Skip to content
By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post
About re:Post

Transitioning Management Account to Production and Setting Up a New Management Account

1

I am currently managing a single AWS account that serves as both the management account and production environment. This account has accumulated 20k credits which apply to all accounts within the organization. We wish to reorganize our AWS environment to improve management and operational efficiency.

we want to:

  • Change the Current Management Account: We want to convert the existing management account into a dedicated production account, while keeping the accumulated credits.
  • Create a New Management Account: Establish a new management account to handle organization management and to benefit from the remaining credits.

Key Points:

  • Existing Setup: The current management account includes multiple environments (dev, staging, prod) and has substantial accumulated credits.
  • New Requirement: We aim to separate each environment into its own account and migrate the management role to a new account.

Questions:

  • Is it possible to reassign the current management account to a production role and transfer the management role to a new account?
  • Can we migrate or apply the existing credits to the new management account?
  • What are the best practices for transitioning the management role while ensuring minimal disruption and maintaining the credit balance?
Topics
Cloud Financial ManagementManagement & GovernanceSecurity, Identity, & Compliance
Tags
AWS Identity and Access ManagementAWS OrganizationsAWS Account ManagementSecurity, Identity, & ComplianceAWS Billing
Language
English
asked a year ago332 views
1 Answer
2
Accepted Answer

Hello.

Is it possible to reassign the current management account to a production role and transfer the management role to a new account?

It is possible to delegate AWS Organizations operations to member accounts.
https://docs.aws.amazon.com/organizations/latest/userguide/orgs_delegate_policies.html

Can we migrate or apply the existing credits to the new management account?

Once applied, AWS promotional credits cannot be transferred to another account.
However, you can share it within your AWS Organizations member account.
So I think you should enable the credit sharing setting so that it can be shared between member accounts.
https://docs.aws.amazon.com/awsaccountbilling/latest/aboutv2/useconsolidatedbilling-credits.html#credit-sharing

What are the best practices for transitioning the management role while ensuring minimal disruption and maintaining the credit balance?

AWS Organizations management accounts cannot be changed later.
https://docs.aws.amazon.com/organizations/latest/userguide/orgs_getting-started_concepts.html

You cannot change which account in your organization is the management account.

Therefore, you will need to delete AWS Organizations and migrate to another AWS Organization.
https://aws.amazon.com/jp/blogs/news/aws-organizations-moving-an-organization-member-account-to-another-organization-part-1/

EXPERT
answered a year ago
EXPERT
reviewed a year ago
EXPERT
reviewed a year ago
  • Adit Modi
    a year ago

    It is possible to delegate AWS Organizations operations to member accounts.

    • Delegating AWS Organizations operations to member accounts does not fulfill my requirement. I need to convert the current management account into a production role while assigning a new account as the management account. Can you provide alternative solutions or confirm if this is feasible?

    Once applied, AWS promotional credits cannot be transferred to another account. However, you can share it within your AWS Organizations member account. So I think you should enable the credit sharing setting so that it can be shared between member accounts.

    • As I understand, AWS promotional credits cannot be transferred between accounts. I can enable credit sharing within the current organization. However, if we create a new AWS Organization, will the credits in the current management account be transferred to the new organization, or will they remain with the old one?

    AWS Organizations management accounts cannot be changed later. Therefore, you will need to delete AWS Organizations and migrate to another AWS Organization.

    • Since management accounts cannot be changed later, the suggested approach is to delete the existing AWS Organization and create a new one. Can you confirm if credits from the old organization will be retained or lost in this process? What steps should we take to ensure a smooth transition and proper credit allocation?
  • Riku_Kobayashi EXPERT
    a year ago

    Delegating AWS Organizations operations to member accounts does not fulfill my requirement. I need to convert the current management account into a production role while assigning a new account as the management account. Can you provide alternative solutions or confirm if this is feasible?

    What you want to do is not possible because existing AWS Organizations management accounts cannot be changed. If you really want to change it, you need to delete AWS Organizations and create new AWS Organizations.

    As I understand, AWS promotional credits cannot be transferred between accounts. I can enable credit sharing within the current organization. However, if we create a new AWS Organization, will the credits in the current management account be transferred to the new organization, or will they remain with the old one?

    AWS Promotional Credits are tied to your AWS account, so if the credits are applied to your current managed account, you can simply delete AWS Organizations and then add that account as a member account in another Organizations. That means moving to new AWS Organizations. https://docs.aws.amazon.com/awsaccountbilling/latest/aboutv2/useconsolidatedbilling-credits.html#credits-for-orgs

    If an individual leaves an organization during the month, AWS begins applying credits to the individual’s account on the first day of the following month.

  • Riku_Kobayashi EXPERT
    a year ago

    Since management accounts cannot be changed later, the suggested approach is to delete the existing AWS Organization and create a new one. Can you confirm if credits from the old organization will be retained or lost in this process? What steps should we take to ensure a smooth transition and proper credit allocation?

    As I answered in the question above, AWS promotional credits are tied to your AWS account, so the credits will not disappear even if you delete your organization. That means moving to new AWS Organizations.

  • Adit Modi
    a year ago

    I don't have any further questions, I think you answered everything. Thanks for your help.

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Relevant content