There are two options to create Zilla-IAM-Reader-Role and Zilla-SSO-Reader-Role in AWS accounts.
Create Roles using AWS IAM console by logging in into to each Member Account of AWS Organization.
ORCreate Roles using AWS CloudFormation from Management Account of AWS Organization.
Steps to create roles manually using IAM console:
Login into each AWS Member Account and create
Zilla-IAM-Reader-Role
using steps - AWS - Create an IAM Role for IAM Users, Groups, Roles and ResourcesLogin into Management Account of AWS Organization and create
Zilla-IAM-Reader-Role
using steps - AWS - Create an IAM Role for IAM Users, Groups, Roles and ResourcesLogin into Management Account of AWS Organization and create
Zilla-SSO-Reader-Role
using steps - AWS Organization - Create an IAM Role for SSO Users, Groups and Permission Set
Steps to create roles using CloudFormation:
Login into Management Account of your AWS Organization.
Create Zilla-IAM-Reader-Role in all member accounts of AWS organization using steps - AWS Organization - AWS CloudFormation For Creating Zilla-IAM-Reader-Role In Member Accounts
Create Zilla-IAM-Reader-Role in Management Account of the AWS Organization using steps - AWS CloudFormation For Creating Zilla-IAM-Reader-Role
Create Zilla-SSO-Reader-Role in Management Account of the AWS Organization using steps - AWS CloudFormation For Creating Zilla-SSO-Reader-Role