Create a Standard Account Policy

You must create a standard account policy for the Standards AWS Accounts. With this policy, you can manage access in AWS.

You can attach the AWS policy to an IAM identity such as Users or Roles. For more information, see Policies and Permissions.

Procedure

In the AWS console, go to IAM > Policies > Create policy.
In the Create policy page, click the JSON tab.

In the JSON text box, enter the following account policy:

Option	Description
To add a standard account policy Note: You must add the standard account policy in the Standard AWS Account that you want to add as a data source.	{ "Version": "2012-10-17", "Statement": [ { "Effect": "Allow", "Action": [ "iam:ListAccountAliases" ], "Resource": [ "" ] }, { "Effect": "Allow", "Action": [ "ec2:Describe" ], "Resource": "" }, { "Action": [ "logs:Describe", "logs:Get", "logs:TestMetricFilter", "logs:FilterLogEvents" ], "Effect": "Allow", "Resource": "" } ] }

Option

Description

To add a standard account policy

Note: You must add the standard account policy in the Standard AWS Account that you want to add as a data source.

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Effect": "Allow",
            "Action": [
                "iam:ListAccountAliases"
            ],
            "Resource": [
                "*"
            ]
        },
        {
            "Effect": "Allow",
            "Action": [
                "ec2:Describe*"
            ],
            "Resource": "*"
        },
        {
            "Action": [
                "logs:Describe*",
                "logs:Get*",
                "logs:TestMetricFilter",
                "logs:FilterLogEvents"
            ],
            "Effect": "Allow",
            "Resource": "*"
        }
    ]
}

Click Review policy.
Under Review policy section, enter a policy name and click Create policy.

What to do next

Create a User in the Primary AWS Account.