Group-based account management

Using AWS Organizations, you can create groups of AWS accounts. You can create separate groups of accounts to use with development and production resources, and then apply different policies to each group.

Policy framework for multiple AWS accounts

AWS Organizations provides you a policy framework for multiple AWS accounts. You can apply policies to a group of accounts or all the accounts in your organization.

API level control of AWS services

With AWS Organizations, you can use service control policies (SCPs) to manage the use of AWS services at an API level. For example, you can apply a policy to a group of accounts to only allow AWS Identity and Access Management (IAM) users in those accounts to read data from Amazon S3 buckets.

Account creation and management APIs

The AWS Organizations APIs help you automate the creation and management of new AWS accounts. Using the Organizations APIs, you can create and add new accounts to a group. Policies attached to a group are automatically applied to accounts added to the group.

Consolidated billing

AWS Organizations enables you to set up a single payment method for all the AWS accounts in your organization through consolidated billing. With consolidated billing, you can see a combined view of charges incurred by all your accounts, as well as take advantage of pricing benefits from aggregated usage, such as volume discounts for Amazon EC2 and Amazon S3.

Enable only consolidated billing features

AWS Organizations allows you to create new organizations with only the consolidated billing features enabled. This enables you to set up a single payment method across your AWS accounts, roll up account activity from multiple accounts into a single invoice, and track costs centrally. Advanced policy controls such as Service Control Policies (SCPs) are not enabled.

Getting started with AWS Organizations

Visit the getting started page
Ready to build?
Get started with AWS Organizations
Have more questions?
Contact us