Skip to content

Instantly share code, notes, and snippets.

Created May 14, 2019
What would you like to do?
Restrict AWS Org to Regions
# Landing Zone Service Control Policies
- name: restrict-to-eu
description: Restrict to EU regions
policy_file: policies/restrict_to_eu_regions.json
#Apply to accounts in the following OU(s)
- core
- applications
"Version": "2012-10-17",
"Statement": [
"Sid": "DenyAllOutsideEU",
"Effect": "Deny",
"NotAction": [
"Resource": "*",
"Condition": {
"StringNotEquals": {
"aws:RequestedRegion": [
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment