AWS Organization - Creating Zilla-IAM-Reader-Role And Zilla-SSO-Reader-Role

Owned by Sagar Salokhe (Unlicensed)
Last updated: Sept 30, 2022
1 min read

There are two options to create Zilla-IAM-Reader-Role and Zilla-SSO-Reader-Role in AWS accounts.

  1. Create Roles using AWS IAM console by logging in into to each Member Account of AWS Organization.
    OR

  2. Create Roles using AWS CloudFormation from Management Account of AWS Organization.

Steps to create roles manually using IAM console:

  1. Login into each AWS Member Account and create Zilla-IAM-Reader-Role using steps - AWS - Create an IAM Role for IAM Users, Groups, Roles and Resources

  2. Login into Management Account of AWS Organization and create Zilla-IAM-Reader-Role using steps - AWS - Create an IAM Role for IAM Users, Groups, Roles and Resources

  3. Login into Management Account of AWS Organization and create Zilla-SSO-Reader-Role using steps - AWS Organization - Create an IAM Role for SSO Users, Groups and Permission Set

Steps to create roles using CloudFormation:

  1. Login into Management Account of your AWS Organization.

  2. Create Zilla-IAM-Reader-Role in all Member accounts of AWS organization using steps - AWS Organization - AWS CloudFormation For Creating Zilla-IAM-Reader-Role In Member Accounts

  3. Create Zilla-IAM-Reader-Role in Management Account of the AWS Organization using steps - AWS CloudFormation For Creating Zilla-IAM-Reader-Role

  4. Create Zilla-SSO-Reader-Role in Management Account of the AWS Organization using steps - AWS CloudFormation For Creating Zilla-SSO-Reader-Role