AWS: how to manage authentication for multiple accounts
NickName:user3771601 Ask DateTime:2015-02-02T20:51:46

AWS: how to manage authentication for multiple accounts


We have multiple AWS accounts (about 15-20), one AWS account per client that we are managing, each account having VPC having dedicated setup of instances. Due to regulatory requirements all accounts needs to be isolated from each other.

What is the best way to manage account credentials for these AWS accounts? Following is what I am thinking

-For any new client

  1. Create a new AWS account
  2. Create AWS IAM roles (admin, developer, tester) for newly created account using cloudformation
  3. Using master AWS account, assume roles created in step 2 to access other accounts.

Is this the right approact to manage multiple accounts?

Thanks in advance.

Copyright Notice:Content Author:「user3771601」,Reproduced under the CC 4.0 BY-SA copyright license with a link to the original source and this disclaimer.
Link to original article:https://stackoverflow.com/questions/28278186/aws-how-to-manage-authentication-for-multiple-accounts

Products recommended by Amazon
More >>>
SanDisk 128GB microSDXC-Card, Licensed for Nintendo-Switch - SDSQXAO-128G-GNCZN
SanDisk 128GB microSDXC-Card, Licensed for Nintendo-Switch - SDSQXAO-128G-GNCZN
 HUANUO Dual Monitor Stand - Adjustable Spring Monitor Desk Mount Swivel Vesa Bracket with C Clamp, Grommet Mounting Base for 13 to 27 Inch Computer Screens - Each Arm Holds 4.4 to 14.3lbs
HUANUO Dual Monitor Stand - Adjustable Spring Monitor Desk Mount Swivel Vesa Bracket with C Clamp, Grommet Mounting Base for 13 to 27 Inch Computer Screens - Each Arm Holds 4.4 to 14.3lbs
 AMD Ryzen 5 5600X 6-core, 12-Thread Unlocked Desktop Processor with Wraith Stealth Cooler
AMD Ryzen 5 5600X 6-core, 12-Thread Unlocked Desktop Processor with Wraith Stealth Cooler
 Timberland Men's 6-Inch Premium Waterproof Boot
Timberland Men's 6-Inch Premium Waterproof Boot
More about “AWS: how to manage authentication for multiple accounts” related questions
AWS: how to manage authentication for multiple accounts

We have multiple AWS accounts (about 15-20), one AWS account per client that we are managing, each account having VPC having dedicated setup of instances. Due to regulatory requirements all accounts

Show Detail
AWS SSO for external client AWS accounts not in an organization - Best Practices

I have multiple different clients I work with that are completely independent of each other. If a client I'm working with already has an AWS account, I may develop software in their existing AWS ac...

Show Detail
Setup Ansible server to manage several AWS Accounts using dynamic inventory?

How do I setup Ansible server to manage multiple AWS accounts using dynamic inventory, so, I have 20 AWS accounts and want to manage all those from single server (VPC's in all accounts are peered ...

Show Detail
Manage multiple aws accounts

I would like to know a system by which I can keep track of multiple aws accounts, somewhere around 130+ accounts with each account containing around 200+ servers. I wanna know methods to keep track...

Show Detail
Managing users through AWS Organization accounts

I have a question. I would like to manage multiple accounts and users using an AWS API (SDK). So is it possible to use AWS Organization in order to manage account and get access to a list of users ...

Show Detail
Recommended way to manage credentials with multiple AWS accounts?

What is the best way to manage multiple Amazon Web Services (AWS) accounts through boto? I am familiar with BotoConfig files, which I'm using. But each file describes only a single account...and I...

Show Detail
How can I configure multiple AWS accounts in metricbreat?

I am using metricbeat to collect metrics from AWS. I am looking for a better way to collect from multiple AWS accounts. Below is my configuration and I am using credential_profile_name to specify AWS

Show Detail
How to manage patching on multiple AWS accounts with different schedules

I'm looking for the best way to manage patching Linux systems across AWS accounts with the following things to consider: Separate schedules to roll patches through Dev, QA, Staging and Prod sequen...

Show Detail
AWS Federated User - multiple aws accounts?

I'm not sure wether or not this is possible. We have a couple of different Amazon Web Service Accounts, in this case let us just call them: Test environment 1 Test environment 2 Production environm...

Show Detail
How to handle multiple AWS accounts in Kops?

Can I pass AWS creds to Kops CLI or programmatically? How to handle multiple AWS accounts?

Show Detail