Overview
Account Assessment for AWS Organizations allows you to centrally manage and evaluate all AWS accounts within your AWS Organizations, helping you to better understand and navigate the dependencies of AWS Organizations. The process to manually evaluate AWS Organizations dependencies can be time consuming—potentially involving reviews of tens or even hundreds of AWS resources of individual accounts. Now, you can run three types of scans to find delegated administrator accounts, identity-based and resource-based policies, and AWS services that have trusted access enabled for your AWS Organizations—all from a simple UI.
Benefits
View, examine, and troubleshoot your scan results in an intuitive web UI.
Use more than 25 AWS services enabled with trusted access to perform operations across all of the AWS accounts in your AWS Organizations.
Scan for resource-based policies, delegated admin accounts, and trusted access with the web UI.
Technical details
You can automatically deploy this architecture using the implementation guide and the accompanying AWS CloudFormation template.
Step 1
Users log in to the hub account by using the web UI, and the Amazon Cognito user pool authenticates each user. Amazon CloudFront delivers the web UI content from an Amazon Simple Storage Service (Amazon S3) bucket.
Related content
Identify some of the account, reporting, billing, and other considerations you will need to take when migrating accounts.
Learn how to migrate our accounts configured with consolidated billing to a new organization that has all features.
Was this page helpful?
Total results: 1
- Publish Date
-
- Version: 1.1.0
- Released: 1/2025
- Author: AWS
- Est. deployment time: 30 mins
- Estimated cost: See details