No
Confirm and Proceed
View More
View Less
Working...
Close
OK
Cancel
Confirm
System Message
Delete
Schedule
An unknown error has occurred and your request could not be completed. Please contact support.
Reserved - Scan in at least 10 minutes before the beginning of the session or you forfeit your seat.
This has been added to your Planner. Please note this is first come, first served. You have not reserved a seat in this activity.
Waitlisted - You may be assigned a reserved seat if one becomes available.

In order to find repeats of this session, please click on the session title to view the session details.
Personal Calendar
 
Conference Event
Meeting
Interests
There aren't any available sessions at this time.
System Message
This session is already scheduled at another time. Would you like to...
Loading...
Please enter a maximum of {0} characters.
{0} remaining of {1} character maximum.
Please enter a maximum of {0} words.
{0} remaining of {1} word maximum.
must be 50 characters or less.
must be 40 characters or less.
Session Summary
We were unable to load the map image.
This has not yet been assigned to a map.
Search Catalog
Reply
Replies ()
Search
New Post
Microblog
Microblog Thread
Post Reply
Post
Your session timed out.
Meeting Summary

SEC341-R - [REPEAT] Set permission guardrails for multiple accounts in AWS Organizations

Session Description

AWS Organizations provides central governance and management for multiple accounts. Central security administrators use service control policies (SCPs) with Organizations to establish controls that all AWS Identity and Access Management (IAM) principals (users and roles) adhere to. For example, you can use SCPs to restrict access to specific AWS Regions or prevent your IAM principals from deleting common resources, such as an IAM role used by your central administrators. You can also define exceptions to your governance controls, restricting service actions for all IAM entities (users, roles, and root) in the account except a specific administrator role.

Session Speakers
Additional Information
Chalk Talk
Security, Compliance, and Identity
300 - Advanced
Please note that session information is subject to change.
Session Schedule
    Repeat Sessions