インフラ初心者がつまづいたアカウント運用管理発展
https://qiita.com/ist-m-t/items/874ec31dc8ea4ba3ff43?utm_campaign=popular_items&utm_medium=feed&utm_source=popular_items

#qiita #AWS #アカウント管理 #awsorganizations #IAMIdentityCenter

"Nothing is ever easy"

Read "Close an AWS Account in an Organization: Challenges and risks related to removing AWS accounts, OUs, and organizations"

by AWS Hero @teriradichel

https://medium.com/cloud-security/close-an-aws-account-in-an-organization-1052b33876f2

#aws #awsAccounts #awsOrganizations #security

I have lots of AWS accounts in my AWS organization. Each account has an implicit root user that could be used to gain complete control over that account.

I would like to block any logins to the root users on all the AWS accounts except for the primary account.

That way, I only have to keep track of MFA for the one root user (which I never use).

#awsWishlist #aws #awsOrganizations #security