Cross-Account Access
Architecture
Allow users or services from other accounts to access your resources:
- Trust policies defining who can assume the role
- External IDs for third-party access
- MFA requirements for sensitive operations
When to Use
- Multi-account AWS organizations
- Third-party vendor access
- Centralized security tooling