How can I share a portfolio in AWS Service Catalog across AWS Organizations?

Last updated: 2019-09-10

How can I share a portfolio with accounts in my organization using AWS Service Catalog, and then allow users in the receiving account to view and launch those products?

Resolution

Share the portfolio with the organization or a specific organizational unit (OU) from the provider account

Important: You can share portfolios within the organization from a master account only.

  1. Open the AWS Service Catalog console.
  2. In the navigation pane, choose Portfolios list.
  3. To choose the portfolio that you want to share, select the radio button next to the portfolio.
  4. Choose Share Portfolio.
  5. Choose Organization.
  6. For Node Type, choose Organization or Organizational Unit based on your needs.
    Note: To share the portfolio with all organizational units (OUs) in the organization, choose Organization. To share the portfolio with a single OU within the organization, choose Organizational Unit.
  7. For Input Value, enter your organization ID or OU ID.
  8. Choose Share.

A message appears confirming that you have successfully shared your portfolio.

Allow users to access products in the shared portfolio from the target account

Note: The following steps must be performed from the account (target account) where you're sharing your portfolio.

  1. Open the AWS Service Catalog console.
  2. In the navigation pane, choose Portfolios list, and then choose the shared portfolio.
  3. Choose Users, Groups, and Roles, and then choose Add user, group or role.
  4. To give an AWS Identity and Access Management (IAM) entity access to products in the portfolio, choose the Groups tab, Users tab, or Roles tab, depending on your needs.
  5. Select the IAM entity that you want to add access for.
  6. Choose ADD ACCESS.

Did this article help you?

Anything we could improve?


Need more help?