/
AWS - Organizational Units/Accounts
Document toolboxDocument toolbox

AWS - Organizational Units/Accounts

Owned by Sri Raghu
Jan 09, 2025
1 min read

AWS Organizations provides a central location to manage multiple AWS accounts. Organizational Units (OUs) are used to group AWS accounts together for easier management. An OU can contain multiple accounts and even other OUs, allowing for a hierarchical structure. Each account within an organization operates independently but can be managed centrally through AWS Organizations.

 Policies applied to an OU are inherited by all accounts within that OU. This simplifies the application of policies across multiple accounts. You can apply policies across accounts to enforce security, compliance, and operational guidelines.

In the Organizational Units/Accounts step of the Create Discovery Job Configuration wizard, configure the following:

  • Choose the Organizational Units.

  • Choose the Accounts under each Organizational Unit. By default, all the Accounts under an Organizational Units are selected.

  • Click Next.

If you select the root OU, all the current sub-OUs, future sub-OUs, current accounts, and future accounts will be automatically added to Universal Asset Insights.

If you select only the sub-OUs, only the existing and new accounts in the sub-OUs will be added to Universal Asset Insights.

If you only select a particular account, only the account will be added to Universal Asset Insights. No new accounts or sub-OUs will be added.