- Centralized management of all AWS accounts.
- Create or invite account to organization.
- Attach policies that affect some or all accounts.
- Consolidated billing for all accounts
- Master account can be used as payer account.
- Allow all billing to be router thru Master account.
- Single bill for accounts.
- Volume discounts can be applied. AWS offers sliding cost for lot of services. More we purchase cheaper is the cost. More details can be found here.
- Hierarchical grouping of accounts to meet budget, security or compliance requirements.
- Group accounts into Organization Units.
- Attach different access policies to each Organization Units.
- Nested Organization Unit to depth of five levels helps to structure account groups.
- Use SCP to control over AWS services and API actions.
- Integration and support for AWS Identity and IAM.
- IAM provides granular control over users and roles in individual accounts.
- AWS organization expands this control to account level.
- User in an account can access what is allowed by both IAM and AWS organization policies.
- Integration with other services.
- Eventual consistency of any changes in the Organizations.
- AWS Organization uses eventual consistency approach. High availability is achieved by replicating data across multiple server in AWS data center within its region.
- Any change is AWS organization takes time to become visible from all possible endpoints.
- There is delay in data transfer from one server to another or from one replication zone to another replication zone.
- One of the design consideration for global application.
Common terms and description related to AWS organization can be found here.