Skip to content

Latest commit

 

History

History
44 lines (30 loc) · 2.04 KB

README.md

File metadata and controls

44 lines (30 loc) · 2.04 KB

TTS-wide AWS Account Adminstration

This repository contains AWS cross-account management for the Technology Transform Service (TTS) and is managed by the TTS Technology Portfolio within the General Services Administration.

Setup

  1. Set up AWS credentials for the AWS account 133032889584

  2. Install Terraform

  3. Clone this repository

  4. Set up Terraform

    cd aws-admin/terraform
terraform init

  5. Confirm the AWS connection works

    terraform plan

Cross-account access

Based on these steps.

Source account: 133032889584

Adding a new destination account

  1. Log in to the destination account.
  2. Create a role for "another AWS account". For the Account ID, enter 133032889584.
  3. Select the AdministratorAccess policy.
  4. Add a tag of Project: https://github.com/18F/aws-admin.
  5. Set a Role name of CrossAccountAdmin.
  6. Create it.
  7. Mark a Y in the Role switching enabled? column of the AWS accounts list

Signing in to destination accounts

  1. Log in to the source account using IAM
  2. Use the Switch role URL from the AWS accounts list

More info.