AWS member account for collecting logs from development accounts
Security Organizational Unit for Development accounts
Infrastructure Organizational Unit
AWS member account for network related infrastructure such as Route53 HostedZone etc
AWS member account for collecting logs from production accounts
Security Organizational Unit for Production accounts
Quarantine Organizational Unit, for deleted accounts
Security Organizational Unit
AWS member account for source code git repository of all the applications.
Workloads Organizational Unit, to group all the application workloads
Generated using TypeDoc
Construct to set up organizational hierarchy in management account based on best practice recommendations. Best practice recommendation is to use management account for all the management related tasks and have a separate member account for each of your application. X8OrganizationSetup construct will do the following tasks.
SecurityOU is used to group security related accounts such as logs and cloudtrail events from all the accounts, only security team has view only access to it.
InfrastructureOU is used to group infrastructure related accounts such as network etc that are shared between all member accounts
WorkloadsOU is used to group all the application workloads.
QuarantineOU is used to group all the deleted accounts
It addresses the following compliance requirements