- Is an account management service that allows you to consolidate multiple AWS accounts under an Organization, that your create and manage.
- Centrally manage policies across multiple accounts.
- Control access to AWS services.
- Automate AWS account creation and management.
- Consolidated billing across multiple AWS accounts.
- Specifically allow or deny AWS services to an account using Service Control Policies (SCP). SCPs override policies defined within account.
- Available in two feature sets:
- Consolidated Billing
- All Features
- Currently a soft limit of 20 linked accounts for consolidated billing.
- All linked accounts are independent, they can not access resources of one another.
- One bill per AWS account.
- Easy to track charges and allocate costs.
- Take advantage of volume pricing discounts, since billing is done on combined usage.
- Reserved EC2 instances are distributed across all accounts.
- Paying account should be used for billing only. Do not deploy resources under paying account.
- CloudTrail is on per account basis, but can be aggregated by using S3 bucket to share logs and accessing them from Paying account.
Subscribe to:
Post Comments (Atom)
0 comments:
Post a Comment