Question 1

How to create a new AWS account with CDK Organizations?

Accepted Answer

Use the Account construct with required properties like email and parent OU. The README provides a TypeScript example, and note that AWS limits account creation to one in progress, so add dependencies between accounts.

Question 2

CDK Organizations vs Terraform for managing AWS Organizations?

Accepted Answer

CDK Organizations integrates with AWS CDK for type-safe, code-based management using programming languages, while Terraform uses HCL and has a broader provider ecosystem. Choose CDK Organizations if you're already using CDK for infrastructure.

Question 3

How to attach service control policies (SCPs) to OUs?

Accepted Answer

First enable the SCP policy type on the organization with enablePolicyType, then create a Policy construct and use the attachPolicy method on the OU. The example in the README demonstrates this with code snippets.

Question 4

Can I delete an AWS account using CDK Organizations?

Accepted Answer

Yes, by setting the removalPolicy to DESTROY on the Account construct, but account closure has prerequisites like moving resources, and the library doesn't handle all cleanup, as per AWS's limitations noted in the README.

Question 5

How to import an existing AWS Organization into CDK?

Accepted Answer

The Organization construct automatically imports an existing organization if one exists, but you can disable this with importOnDuplicate: false. Ensure the stack is deployed in the management account, as per the Usage notes.

Question 6

What are the limitations of CDK Organizations?

Accepted Answer

It inherits AWS Organizations' quotas, such as limits on OUs and accounts, and has library-specific constraints like endpoint defaults and management account requirements, detailed in the Limitations section of the README.

cdk-organizations

What is cdk-organizations?

Overview

Use Cases

Best For

Found a gem we're missing?

Not Ideal For

Pros & Cons

Pros

Cons

Frequently Asked Questions