This project documents how I set up a secure, multi-account AWS environment using AWS Organizations and IAM Identity Center (formerly AWS SSO). I created users, groups, and permission sets, enforced MFA, and tested single sign-on access, simulating a real-world approach to cloud identity and access management.

TASK 1

Introduction: AWS Free Tier Setup

• Started by creating a new AWS free tier account.

AWS Free tier account creation

Registered with my email address and enabled root user access.

Secured the root account by:

. Setting a strong password.

. Enabling Multi-Factor Authentication (MFA) using Google Authenticator to protect the root user.

Setting up MFA for the Root user using authenticator option

Root user MFA authenticator confirmation code

Reason for creating MFA for the root account:

• AWS recommends always securing the root user and using it only for account & billing purposes.
• After this, I was ready to dive into creating organizations and setting up role-based identity management.

Confirmation of the root user MFA

1. Set up AWS Organization and Accounts

What I did:

• Created an AWS Organization, starting with the Management (Root) Account.
• Added a Development account under the organization, and also reset the password

Successful creation of the root user AWS Organization account

Successful creation of the AWS Development account