- AWS Administration Cookbook
- Lucas Chan Rowan Udell
- 173字
- 2021-07-09 18:18:36
Accessing the member account
Once you've created your member account, it's time to put it to work!
An IAM role will be present in the new account, with a default name of OrganizationAccountAccessRole. This is so you can assume the role (from your master account) and administer the member account. While this name is as good as any, it can be configured by passing the --role-name argument when creating the account.
In order to assume the role, you need to know its Amazon Resource Name (ARN). Working out the ARN is a multi-step process:
- List your member accounts by running the following command in your master account:
aws organizations list-accounts
- Find the account you created (by its name) and note the ID value in the record. Using that ID, generate the role's ARN by following this pattern:
arn:aws:iam::<your-member-account-
id>:role/OrganizationAccountAccessRole
- If you have changed the created role's name, update the last part of the ARN accordingly.
See the recipes in Chapter 8, Security and Identity for information on how to best manage multiple accounts.
推薦閱讀
- PPT,要你好看
- 控制與決策系統(tǒng)仿真
- 條碼技術(shù)及應(yīng)用
- CSS全程指南
- 群體智能與數(shù)據(jù)挖掘
- 現(xiàn)代機械運動控制技術(shù)
- 西門子S7-200 SMART PLC實例指導(dǎo)學(xué)與用
- Android游戲開發(fā)案例與關(guān)鍵技術(shù)
- OpenStack Cloud Computing Cookbook
- R Data Analysis Projects
- Unreal Development Kit Game Design Cookbook
- Moodle 2.0 Course Conversion(Second Edition)
- Linux常用命令簡明手冊
- 軟件測試管理
- 谷物干燥節(jié)能供熱技術(shù)與裝備