Questions tagged with AWS Organizations
Content language: English
Select up to 5 tags to filter
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
We have an organization-wide CloudTrail which is logging events to an S3 bucket in a different account (part of the organization). By default, with S3 events turned on, this means we are getting the...
1
answers
0
votes
462
views
asked 3 months agolg...
What is the optimal strategy for consolidating multiple master accounts, each with a unique landing zone and associated VPCs linked to separate Transit Gateways, into a unified landing zone where all...
1
answers
1
votes
615
views
In addition to the native FullAWSAccess SCP, I have 2 SCPs at the root of my organization
* Block root user access https://asecure.cloud/a/scp_root_account/
* Deny region based on...
2
answers
0
votes
216
views
asked 3 months agolg...
Hi All,
I created a Gov Cloud Account through my standard AWS Account. Now I want to see the link between these 2 accounts , where can I check - AWS Organizations ?
And how to filter the cost...
1
answers
0
votes
429
views
asked 3 months agolg...
Our AWS org has duplicate SCPs from Control Tower. They are the exact same policy document. But applied to different OUs. I have a couple of questions.
1) Where do the duplicates come from? And will...
1
answers
0
votes
451
views
asked 3 months agolg...
Hey everyone,
I know the process of inviting a standalone account to Organization but I thought would like to double check if there are additional steps to keep in mind, because this standalone...
2
answers
0
votes
538
views
asked 4 months agolg...
Hi!
Recently I've been automating account creation in Control Tower using Service Catalog APIs as it's explained in this docs:...
1
answers
0
votes
442
views
asked 4 months agolg...
I have an AWS Organization set up and delegated IPAM to my network account. In my network account, I have created IPAM with a pool. This pool is shared to my dev account.
Now, moving to my dev...
1
answers
0
votes
1619
views
asked 4 months agolg...
Hello all,
I have a problem as follows: my organization has an AWS account with many resources such as EC2, RDS, EFS, VPC from different teams. Currently, I want to split these resources into...
1
answers
0
votes
111
views
asked 4 months agolg...
I have a use case where I'd like to centralise GuardDuty findings from multiple member accounts into the Security Hub of one account. Let's call it the Audit account.
* I setup AWS Organisations with...
1
answers
1
votes
242
views
asked 4 months agolg...
I am trying to invite an account created to an organisation unit I just created using AWS Organisations.
This exercise is based on the [Tutorial: Creating and configuring an...
1
answers
0
votes
241
views
asked 4 months agolg...
Hello,
I'm looking into SCPs, and I see that's possible to require a tag for EC2 for example with the following policy:
```json
{
"Sid": "DenyRunInstanceWithNoProjectTag",
"Effect":...
1
answers
0
votes
130
views
asked 4 months agolg...