AWS CCP Notes

Search

Search IconIcon to open search

16-01 Organizations and Accounts

Last updated Aug 27, 2023 Edit Source

# Organizations

#aws-service
35 Organizations allow the creation of new AWS accounts. Centrally manage billing, control access, compliance, security, and share resources across your AWS accounts.

# Root Account User

#aws-resource
35
Root Account User is a single sign-in identity that has complete access to all AWS services and resources in an account. Each account has a Root Account User

# Organization Units

#aws-resource
35
Organization Units are a group of AWS accounts within an organization which can also contain other organizational units - creating a hierarchy

# Service Control Policies (SCP)

Service Control Policies give central control over the allowed permissions for all accounts in your organization, helping to ensure your accounts stay within your organization’s guidelines.

Note

  • AWS Organizations must be turned on, once turned it cannot be turned off.
  • You can create as many AWS Accounts as you like, one account will be the Master/Root Account
  • An AWS Account is not the same as a User Account


Interactive Graph