Create & initialise a new AWS account

We want a new, secure, AWS account that can be used by engineers to deploy kubernetes clusters into.

## Acceptance Criteria

* [ ] New account created as part of [corp-infra](https://github.com/weaveworks/corp-infra)
* [ ] [Service control policy (SCP)](https://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_scps.html#scp-effects-on-permissions) created and applied that limits actions to those necessary to create EKS clusters & administer them
* [ ] Roles created for use by Weaveworks employees:
  * Administrator -- assumable by members of Blazing bonfire (this will have all permissions allowed by the SCP)
  * User -- assumable by anyone who will be able to create clusters this will only have the [minimum permissions necessary to run eksctl](https://eksctl.io/usage/minimum-iam-policies/)
  * Readonly -- optional but probably something we can grant to anyone in the company in order to view the account

This will need to be done on the https://github.com/weaveworks/corp-infra repo and reviewed/applied by IT

cf https://github.com/weaveworks/corp/issues/2951

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Create & initialise a new AWS account #41

Acceptance Criteria

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development