Skip to content

AWS re:Post Knowledge Center Feedback Survey

Help us improve the AWS re:Post Knowledge Center by sharing your feedback in a brief survey. Your input can influence how we create and update our content to better support your AWS journey.

Is it possible to deploy stack (using stack-set) to root/management account using root unique id (r-xxxxx)

0

I have an organisations account with delegated administration for stack operations. This account manages cloudformation stackset deployments for multiple OUs, and includes the root account under the root OU. [But we haven't created any stacksets for root account]

When I create a StackSet targeting the root OU (r-xxxx) intersecting root-account-id, the stack-set is created, but no stack instances are provisioned for root account and no stacks are created in root account. Is this the default behavior, and is it possible to create a stack in the root account from an organization account?

This is to deploy aws cloudintelligence dashboard to fetch aggregated CUR from root account.

Topics: Analytics Management & Governance Cloud Financial Management Business Applications Machine Learning & AI
Tags: Cloud Intelligence Dashboards Amazon Quick Sight StackSets AWS CloudFormation Detect Root Cause AWS Organizations
Language: English

asked 2 years ago579 views

1 Answer

Newest
Most votes
Most comments

1

Accepted Answer

Hi, Are you currently using service-managed permissions[1]? "The target accounts must be members of the AWS Organizations managed by the management account or delegated admin account."[3]. Try using self-managed permissions instead. You will need to create the execution IAM role in the root account yourself[2].

References

answered 2 years ago

EXPERT

reviewed 2 years ago

EXPERT

Adeleke Adebowale .J.

reviewed 2 years ago

Relevant content

How to align unique stacks across an organization?
Kurt Vanslambrouck
asked 2 years ago
How to deploy stack sets to specific accounts?
m0ltar
asked a year ago
How can I include current acount id in CF stack that uses stackset?
User-6525077
asked 2 years ago
Creating a stackset with cloudformation TO DEPLOY STACK IN MY MEMBERS ACCOUNT
Accepted Answer
Nafiu
asked 2 years ago
How do I use CodePipeline to deploy a service-managed CloudFormation StackSet in a delegated administrator account?
AWS OFFICIALUpdated 8 months ago
What are some of the IAM best practices for using stack set to deploy AWS CloudFormation resources?
AWS OFFICIALUpdated 2 years ago
How do I resolve the error "Account used is not a delegated administrator" when I run the ListStackSets operation?
AWS OFFICIALUpdated 2 years ago
How do I delete a stack instance from a CloudFormation stack set in a closed or suspended AWS account?
AWS OFFICIALUpdated 8 months ago
Automating IAM Access Analyzer Deployment Across Your Organization
EXPERT
Purnaresa Y
published 4 months ago
Automating AWS Security Contact Configuration Across Your Organization
EXPERT
Purnaresa Y
published 7 months ago