- look at https://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_accounts_access.html#orgs_manage_accounts_create-cross-account-role
- you only need steps 1-9
This needs to be done for every user and needs to be done for every machine (stored in a cookie or local storage).
Once you have switched from the parent account to a subaccount, your profile menu usually appears in the upper right corner will show the Display Name in a bubble colored with the chosen Color (below).
Note: you can switch back to the parent org by selecting Back to [ YOUR USERNAME ] in that same profile menu.
- Click on your username in the upper right corner to access your profile menu (left most of the menus in that corner)
- Click on
My Organization - In the
Organizational Structurechart copy the account numbers and names of the subaccounts you wish to access
- Make sure you are in the parent account (there will not be a
Back to [ YOUR USERNAME ]option in the profile menu). - Open your profile menu by clicking on your username in the upper right corner (left most of the menus in that corner).
- Select
Switch role - If this is your first time doing this in the browser/computer you will need to click on
Switch Roleagain - Enter the account details
- Account: (as copied in
Preparationabove) - Role:
OrganizationAccountAccessRole - Display Name: user's choice - whatever makes sense to you
- Color: user's choice - NOTE: this will be the color of your username in the header when you're logged into this subaccount
- Account: (as copied in
- Click
Switch Role - Note you are now in the child account, as indicated by the visual change of the profile menu button in the upper right corner.