PROJECT OBJECTIVES:

To set up and configure AWS IAM Identity Center (formerly AWS SSO), creating multiple users, assigning permissions, and preparing a shared environment for collaborative cloud activities.

Task 1: Create AWS Organization and Member Accounts

In this first task, I was required to set up a new AWS Organization using a single management (root) account and add three member accounts named Development, Staging, and Production. This structure is intended to reflect real-world environments, allowing for centralized billing and policy control across all accounts. The organization was successfully created using the root account, and one member account (Development) was added. However, while attempting to add the remaining two accounts (Staging and Production), I encountered AWS’s default account creation limit, which restricts the number of members accounts a newly created organization can add at once.

Summary of Actions Taken:

• Successfully created an AWS Organization from the root account.
• Added Development Account as a member under the organization.
• Attempted to create Development and Production accounts.
• Encountered an account creation limit error due to default AWS quotas (max 1–2 child accounts for new orgs).
• Attempted troubleshooting:
  • Verified email format and availability
  • Reviewed AWS documentation on account quotas
  • Checked for pending invitations or limits
• Documented the error messages for transparency.
• Will revisit after increasing service quotas.

📸 Screenshot (s)

👥 Task 2: Create Users and Assign to Groups