Open in app

Sign in

Write

Sign in

AWS Organizations

Yogendra H J
2 min readMay 9, 2021

--

AWS Organizations helps you centrally manage and govern your environment as you grow and scale your AWS resources. Using AWS Organizations, you can programmatically create new AWS accounts and allocate resources, group accounts to organize your workflows, apply policies to accounts or groups for governance, and simplify billing by using a single payment method for all of your accounts.

You should consider AWS Organizations over AWS IAM for ease of user account creation and administration. Details of AWS IAM service can be read here https://yogendrahj.medium.com/aws-identity-and-access-management-9607f81e3d37.

Benefits: Quickly scale your workloads, Provide custom environments for different workloads, Centrally secure and audit your environment across accounts, Simplify permission management and access control, Efficiently provision resources across accounts, Manage costs and optimize usage.

Important concepts to be known while working with AWS Organizations are as follows:

  1. Master account - Account from which you create an AWS Organizations is called a Master account. We have to make sure the Master account is only used for centralized administration and to pay consolidated bills, it is not recommended to run any of the resources/services here as this account has all rights to perform any activity.
  2. Member account - Accounts that join the Master account are called Member account.
  3. Organizational Unit - A group of accounts is called Organizational Unit or in short OU.
  4. Service Control Policies - Policies attached at the OU level are called Service control policies or in short SCP’s.

In the diagram shown here, Root is just the starting point of an Organization.

One OU can not be part of two OU’s.

One AWS account can be part of only one OU.

SCP’s can be attached at the OU level or at the individual account level.

AWS Organizations allows 5 levels of hierarchy starting from the Root account to the end AWS account.

Look at the below video from KnowledgeIndia Youtube channel to learn AWS Organizations practically by doing hands on.

AWS Organizations CLI official documentation…. https://docs.aws.amazon.com/cli/latest/reference/organizations/index.html

Knowledge credits: AWS official blog.

Video credits: KnowledgeIndia AWS YouTube videos.

WORK HARD IN SILENCE, LET SUCCESS BE YOUR NOISE

I am happy to hear your feedback, suggestions, requests on any topics in my coming blogs.

LEARN and BE CURIOUS!!!!!

Happy Learning,

Yogendra

--

--

Yogendra H J

Written by Yogendra H J

212 Followers

Learning and Sharing knowledge || Cloud Computing evangelist || AWS SAPro || Azure Admin || Exploring DevOps

Help

Status

About

Careers

Press

Blog

Privacy

Terms

Text to speech

Teams