The management account shouldn't be used to create any kind of actual resources as it's a "bastion"/entrypoint mainly for access and tf state. Create policy so no actual resources (sqs, sns, lambda, etc) can be created there.
The management account shouldn't be used to create any kind of actual resources as it's a "bastion"/entrypoint mainly for access and tf state.
Create policy so no actual resources (sqs, sns, lambda, etc) can be created there.