Posted On: Apr 24, 2023

Starting today, customers with multiple organizational units (OU’s), and accounts can now create up to 10 AWS Firewall Manager administrator accounts from AWS Organizations service to manage their firewall policies. Customers can delegate responsibility for firewall administration at a granular scope by restricting access based on OU, account, policy type, and region, thereby enabling policy management tasks to be implemented faster and more effectively.

With administrative scope extending to policy types, customers can assign responsibility for managing particular firewall policies to users who have expertise in different AWS services, such as AWS WAF or AWS Network Firewall. Also, using centralized controls, default administrators can establish baseline security policies across multiple accounts while enabling application developers to manage their own policies under separate administrator accounts.

AWS Firewall Manager is a security management service that acts as a central place for you to configure and deploy firewall rules across accounts and resources in your organization. With Firewall Manager, you can deploy and monitor rules for AWS WAF, AWS Shield Advanced, VPC security groups, AWS Network Firewall, Amazon Route 53 Resolver DNS Firewall, and third-party firewalls across your entire organization. For detailed information, see the AWS Firewall Manager documentation and the AWS Region Table for the list of regions where AWS Firewall Manager is currently available. To learn more about AWS Firewall Manager, its features, and its pricing, visit the AWS Firewall Manager website.