AWS organization account switch role

Switching roles in AWS allows you to access and manage resources from different accounts within your organization without having to log in separately to each one.

Use AWS organization

this kind of role switching requires you to use aws organizations

• In AWS management console login to the management account of your organization
• then you do not need to allow this role for specific accounts manually
  • it’s available automatically for the management account

get account id

• go to aws service AWS organizations
• find the account you want to switch to
• you can see an ID next to the account (12 numbers, keep leading zeros, number does not contain any minus signs)
• mark and copy the account id

switch role

• on top right click on your logged in account name
• click on switch role at the bottom of the dropdown menu
• insert account id (copied before)
• use the following IAM role name

  OrganizationAccountAccessRole
• enter easy to remember display name (this is just for you so you know which account you are switching to later)
• choose display color
• click Switch Role
• now you can view the aws account as if you were logged in to it
• perhaps you had opened a resource of you aws management account before switching the role. then you might get an error saying you do not have access to this content
• just open a different aws service and you should see resources of the account you have switched too

switch between accounts

• while being logged in to AWS management console you can click on your user at the top right
• switch between different roles you have configured before
• or click switch back to view the content as your original logged in account again