Week 3

Summary

In week three I have accomplished creating a future plan for the rest of this project. Due to Human error, I have found that AWS Member accounts natively have separate environments. Meaning that this project can be back on track for the original goal.

Issues

Issues that were seen this week was creating SCP policies. These policies function differently than IAM Policies. IAM is meant to give users access to specific tasks and services, while SCP policies are meant to take away users' permissions, making the concept of them the opposite of what I have been working it. Granted this was not that big of an issue, and I was able to adapt pretty quickly after I learned how to assign the policies to specific resources.

Skill acquired

I am now semi-confident in creating policies and understanding AWS hierarchy when it comes to user permissions.

Impact on the next weeks

This is massive for our project, a little annoying that it took this long to figure out, but massive non the less. Users will now have environments without any overlap and are still managed by Admins.