1 Answer
- Newest
- Most votes
- Most comments
0
Hello.
I think an error will occur if the IAM policy for creating AWS resources is not set in "OrganizationAccountAccessRole".
In other words, if you have an IAM policy with only a billing facility, you will not be able to create AWS resources, which will result in an error.
with only billing facility allow
I think it's a good idea to create "AWSCloudFormationStackSetExecutionRole" in the member account and set the IAM policy required to create AWS resources.
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stacksets-prereqs-self-managed.html
Relevant content
- asked 4 months ago
- Accepted Answerasked 5 months ago
- Accepted Answerasked a year ago
- Accepted Answerasked 6 months ago
- AWS OFFICIALUpdated 8 months ago
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated a year ago