No description, website, or topics provided.
Branch: master
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
accounts allow users to change own credentials Dec 19, 2018
environments initial commit Nov 6, 2018
master Better user management and doc updates (#2) Dec 10, 2018
modules
utility/one-time-login
.gitignore initial commit Nov 6, 2018
LICENSE Initial commit Nov 6, 2018
README.md Add blog post link to readme (#3) Jan 10, 2019
shared.tfvars Better user management and doc updates (#2) Dec 10, 2018
terraform.tfvars

README.md

AWS Organization Terraform

This repository contains the Terraform configurations needed to manage a multi-account AWS organization and the various roles that will be used within the accounts.

At Liatrio, we used this as the foundation for our accounts. We created a private fork that contains the actual users and resources used in our accounts.

Related blog post: liatrio.com/secure-aws-account-structure

Be sure to modify shared.tfvars to customize for your organization.

Prerequisites

Initialization

See the master folder for initial setup instructions the first time the organization is being created.

Post-Initialization

Future Terraform runs must be run by an IAM user in the Infosec account with the appropriate group assignment for the target account:

  • Infosec account: InfosecAdmins group
  • Prod account: ProdAdmins group
  • Non-Prod account: NonProdAdmins group