Questions tagged [aws-organizations]
9 questions
1
vote
2 answers
Running multiple applications within single VPC
Is it fine to run multiple applications within single VPC? I might separate them by subnets of course. The reason I'm thinking this way is that the number of VPCs per pegion is limited to 5 (can me risen up to 100) and traffic is not free between…
Roman Newaza
- 632
- 4
- 13
- 23
1
vote
1 answer
AWS migrate vendor account to my organization
Please consider that I'm new to AWS administration.
I have full access to my organisation's AWS account. One of our website(developed in Drupal) is developed by a vendor who hosts it in their AWS account(dev/prod env.). They have a master account…
Ali
- 111
- 3
1
vote
2 answers
Committed use EC2 across organisation?
I wonder if it's possible to move a specific EC2 instance that was created as committed use between AWS accounts within organisation?
Here's scenario: suppose that technical company handles IT systems for multiple customers and decided to make use…
Tomasz Kapłoński
- 153
- 4
1
vote
2 answers
Enforcing EBS Encryption within AWS Organization using SCP (Service Control Policy)
Is it possible to enforce that all accounts within an AWS organization can only create encrypted EBS volumes?
I know you can enforce it using IAM roles, but I want to know if it can be done with SCP.
Here's what I've come up with so far, but it…
Tim
- 31,888
- 7
- 52
- 78
1
vote
0 answers
Can't SSH to ec2 instance on shared subnet
I have a single VPC with one internet gateway and some subnets that are shared across multiple AWS Organization accounts using RAM. The VPC is protected with a Security Group that is managed by Firewall Manager to ensure it is replicated to all of…
somboo
- 11
- 1
1
vote
0 answers
AWS organization: What is possible as an admin?
I have a question regarding the possibilities as admin of an organization.
The plan is to link an external AWS account of a freelancer to our organization.
After some research it turns out that the instances remain invisible to colleagues from the…
Seppe N
- 11
- 1
1
vote
1 answer
AWS- adding organisation members in a specific OU
We have multiple OU's in our AWS organisation.
We use AWS cli to create new AWS organisation members. For eg.
aws organizations create-account --email test@example.com --account-name "testaccount"
Everytime a new member account is created, it is…
Axel
- 421
- 2
- 8
- 18
1
vote
1 answer
AWS- Limiting resource access for member of organisational accounts
We have certain AWS labs which we offer to our customers. Every time a user opens the lab, a new member account is created and added to the organisational account.
This only happens the first time when a user logs into the lab.
This member account…
Axel
- 421
- 2
- 8
- 18
0
votes
1 answer
AWS Organizations - How to globally set boundaries to allow assess only to predefined set of services?
I would like to allow users in all accounts in my AWS Organization (under a number of different OUs) to access only a few AWS services: RDS, EC2, S3, etc. In other words, I need to prevent access to anything else. I was thinking about using SCP but…
Jacek
- 53
- 2
- 2
- 4