The Stack Part 1: Setting up your AWS Account Structure

Not a Medium member? Read the post here for free.

In the last post we went over the overall goals of “The Stack” and what we will be building. In this post we’ll be setting up our AWS Account structure. See the full overview of posts here.

• Setup on Control
  ◦ Step 1
  ◦ Step 2
  ◦ Step 3
  ◦ Step 4
  ◦ Step 5
  ◦ Cleanup
• Adjusting Account Factory defaults
• Set up our Development Organizational Unit
• Set up our AWS Accounts
• Next Steps

As a reminder, here is the structure we are aiming for:

• Control Tower: This is your central place to control access and policies for all accounts in your organization
• Production Multi-tenant: Your primary production account for multi-tenant setup, and most likely were the majority of users will be
• Production Single-tenant: While desirable to avoid the operation overhead for single-tenant setups, its good to think in this from the get-go
• Integration Test: This will be the account that IaC deployments get tested on to ensure rollout works
• Preview: This will be used to spin up Preview Environments later on
• Individual Developer: Individual developer accounts to allow easy testing of IaC testing and exploration
• Monitoring: Centralize monitoring and observability into one…