- 최신
- 최다 투표
- 가장 많은 댓글
Hello,
When you create an organization, you have the management account (the account that created the organization) and the member account (any other account). To prevent this error, you must create a member account and then delegate that account as the administrator.
Hi @Julian. Thank you for your reply.
Since I don't need another account right now, is there any strong reason I should delegate an administrator? I'm struggling to understand what the purpose of doing this is, even if I had multiple accounts? What happens if I just don't delegate, what are the implications?
Edit: Ahh, not to worry I found the answer. In the docs. I definitely don’t need to delegate :)
*Enabling delegated administration provides the following benefits:
-
Minimizes the number of people who require access to the management account to help mitigate security concerns
-
Allows select administrators to assign users and groups to applications and to your organization's member accounts*
관련 콘텐츠
- AWS 공식업데이트됨 3년 전
- AWS 공식업데이트됨 9달 전
You are not required to create a delegated administrator. It's a recommended security best practice. Here is more detail about delegated administrator: https://docs.aws.amazon.com/singlesignon/latest/userguide/delegated-admin.html