Deploy the solution
This solution uses CloudFormation templates and stacks to automate its deployment. The CloudFormation templates specify the AWS resources included in this solution and their properties. The CloudFormation stack provisions the resources that are described in the templates.
Important
We designed this solution to aggregate scan findings for customers. This solution does not check the validity or correctness of your underlying resource-based policies. When changing policies that allow account migration to another AWS Organization, we recommend:
-
Verifying that your policies work as intended before making changes.
-
Using IAM Access Analyzer to verify that your policies achieve your desired permissions.
-
Reviewing and updating the
Condition
policy element to meet your security requirements. Do not delete theCondition
without reviewing the underlying impact. -
Engaging with AWS Solutions Architects, Technical Account Managers, and AWS Professional Services to review your AWS Organizations-based dependencies identified by the solution before initiating account migration.