- look at https://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_accounts_access.html#orgs_manage_accounts_create-cross-account-role
- you only need steps 1-9
This needs to be done for every user and needs to be done for every machine (stored in a cookie or local storage).
Once you have switched from the parent account to a subaccount, your profile menu usually appears in the upper right corner will show the Display Name
in a bubble colored with the chosen Color
(below).
Note: you can switch back to the parent org by selecting Back to [ YOUR USERNAME ]
in that same profile menu.
- Click on your username in the upper right corner to access your profile menu (left most of the menus in that corner)
- Click on
My Organization
- In the
Organizational Structure
chart copy the account numbers and names of the subaccounts you wish to access
- Make sure you are in the parent account (there will not be a
Back to [ YOUR USERNAME ]
option in the profile menu). - Open your profile menu by clicking on your username in the upper right corner (left most of the menus in that corner).
- Select
Switch role
- If this is your first time doing this in the browser/computer you will need to click on
Switch Role
again - Enter the account details
- Account: (as copied in
Preparation
above) - Role:
OrganizationAccountAccessRole
- Display Name: user's choice - whatever makes sense to you
- Color: user's choice - NOTE: this will be the color of your username in the header when you're logged into this subaccount
- Account: (as copied in
- Click
Switch Role
- Note you are now in the child account, as indicated by the visual change of the profile menu button in the upper right corner.