<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom"><channel><title>Terraform on ImDevinC</title><link>https://imdevinc.com/tags/terraform/</link><description>Recent content in Terraform on ImDevinC</description><generator>Hugo</generator><language>en-us</language><lastBuildDate>Mon, 30 Oct 2023 14:57:06 +0000</lastBuildDate><atom:link href="https://imdevinc.com/tags/terraform/index.xml" rel="self" type="application/rss+xml"/><item><title>Using Terraform to manage 100+ AWS Accounts</title><link>https://imdevinc.com/posts/002-multi-aws-account-terraform/</link><pubDate>Mon, 30 Oct 2023 14:57:06 +0000</pubDate><guid>https://imdevinc.com/posts/002-multi-aws-account-terraform/</guid><description>&lt;h1 id="the-issue">The Issue&lt;/h1>
&lt;p>While browsing &lt;a href="https://reddit.com/r/terraform">/r/terraform&lt;/a> the other day, I stumbled upon a post from someon asking how to use Terraform to &lt;a href="https://www.reddit.com/r/Terraform/comments/17iz4ph/aws_multiaccount_deployments_at_scale/">manage AWS multi-account deployments at scale&lt;/a>. The actual question (copied here in case it goes away) was:&lt;/p>
&lt;blockquote>
&lt;p>Say you have 500 AWS accounts and you need to provision and update their landing zone infrastructure (VPC, logging, IAM, etc.) using Terraform. How would you do it so that changes are deployed parallel to the accounts to speed up deployments? There would need to be one central deployment account which assumes a trust role in target accounts and has account spesific state files in central S3 as well.&lt;/p></description></item></channel></rss>