Introduction
In this document, we are going to create a new AWS account within my organization in AWS organization. Once the account is created, we are also going to integrate it with Entra AD using AWS Single Account Signon Enterprise application. One of the main reasons I like this approach is that, I can see all my AWS Accounts that I have access to in a single page in myapps. With this approach, I can login to any AWS accounts directly and I can see all the accounts that I have access to side by side.
AWS Account Creation in AWS Organizations
AWS Organizations allow us to create and manage AWS Accounts with the help of Organizational Units. OUs are basically a way to organize our organization in a logical sense. If I have multiple accounts that are for non production, I can organize all those accounts under an NPE OU which helps us with managing all the non production accounts. We can have different service control policies or resource control policies that we can deploy based on environment and OU requirements and enforce restrictions.
Now, that we have the account created, to login, we need to create a new password by logging into the AWS Account using the email id used while creating the application.