Account Assessment for AWS Organizations

Investigate resource-based policy dependencies for your AWS Organizations accounts


Presented in a web UI, this AWS Solution runs configurable scans on all AWS accounts in your AWS Organizations to help you identify dependencies in your underlying resource-based policies.


Intuitive web UI

View, examine, and troubleshoot your scan results in an intuitive web UI.

25+ compatible AWS services

Use more than 25 solution-compatible AWS services enabled with trusted access to perform operations across all of the AWS accounts in your Organization.

3 types of scans

Scan for resource-based policies, delegated admin accounts, and trusted access with the solution’s web UI.

Technical details

Account Assessment for AWS Organizations programmatically scans all AWS accounts in an AWS Organization for identity-based and resource-based policies with Organization-based conditions.

AWS Knowledge Center
How do I move accounts between organizations in AWS Organizations?

Identify some of the account, reporting, billing, and other considerations you will need to take when migrating accounts. 

Read the blog 
AWS Cloud Operations & Migrations Blog
Migrating accounts between AWS Organizations with consolidated billing to all features

Learn how to migrate our accounts configured with consolidated billing to a new organization that has all features.

Read the blog 
About this deployment
Est. deployment time
30 mins
Estimated cost
Source code  CloudFormation template 
Deployment options
Ready to get started?
Deploy this solution by launching it in your AWS Console

Need help? Deploy with a partner.
Find an AWS Certified third-party expert to assist with this deployment
Did this AWS Solution help you?
Provide feedback