Deploy Service Control Policies (SCPs) with Terraform.

• AWS Organizations

• SCP Service Limits

This pattern defaults to SCPs for Root, Sandbox, and Workload OUs. If the pattern is not edited, it will deploy example SCPs to these OUs. This is obviously not recommended.

Using the default code and policies as a guide rail:

1. Add or edit the variables in config.auto.tfvars and variables.tf.
2. Add or edit the module blocks in main.tf.
3. Add or edit the directories in the policies directory to align with your OUs.

1. Drag + drop your SCP json templates in the correct directory in policies.
2. Initialize the directory and apply.

There are a series of example SCPs available in the policies directory. Before you edit and deploy them, ensure that you carefully consider the requirements of your organization and the impact that these controls may have.

• SCPs (AWS Organizations User Guide)
• Resource: aws_organizations_policy
• Resource: aws_organizations_policy_attachment
• Data Source: aws_organizations_organization

• force_sagemaker_vpc - tvancasteren

See CONTRIBUTING for more information.

This library is licensed under the MIT-0 License. See the LICENSE file.