From e4685ccceea17011401d9f09b0c4756489afb27a Mon Sep 17 00:00:00 2001 From: milldr Date: Thu, 29 Jan 2026 11:04:47 -0500 Subject: [PATCH 1/2] docs: add Identity layer CTA in account deployment flow Add call-to-action after account ID placeholder updates directing users to deploy the Identity layer before continuing with account settings, CloudTrail, and ECR. Includes a note explaining this is a temporary measure while documentation flow and SuperAdmin profile are being improved. Co-Authored-By: Claude Haiku 4.5 --- docs/layers/accounts/deploy-accounts.mdx | 9 +++++++++ 1 file changed, 9 insertions(+) diff --git a/docs/layers/accounts/deploy-accounts.mdx b/docs/layers/accounts/deploy-accounts.mdx index a7b2f722e..1dfaf2948 100644 --- a/docs/layers/accounts/deploy-accounts.mdx +++ b/docs/layers/accounts/deploy-accounts.mdx @@ -155,6 +155,15 @@ This guide walks through deploying AWS accounts using `atmos` workflows. Before ::: As you continue through the setup process, keep an eye out for other placeholder values in your stack configurations and replace them with actual values as needed. + + :::note Stopgap: Deploy the Identity Layer Before Continuing + Before proceeding with the remaining account steps, you need to deploy the Identity layer. The Identity layer provisions permission sets with AWS Identity Center that allow you to access each member account, which is required for deploying account settings, CloudTrail, and ECR. We're working on improving this documentation flow and the SuperAdmin profile, but for now, the Identity layer must be deployed at this point. + ::: + + + Deploy the Identity layer to provision permission sets for accessing each member account. Return here to finish account settings, CloudTrail, and ECR after the Identity layer is deployed. + Deploy Identity Layer + From cb046179dae1586aecc68644e047d35d3c830bcf Mon Sep 17 00:00:00 2001 From: milldr Date: Thu, 29 Jan 2026 12:24:02 -0500 Subject: [PATCH 2/2] fix: use bold text instead of h3 for sub-section in step container Co-Authored-By: Claude Opus 4.5 --- docs/layers/accounts/deploy-accounts.mdx | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/layers/accounts/deploy-accounts.mdx b/docs/layers/accounts/deploy-accounts.mdx index 1dfaf2948..e96b9bb26 100644 --- a/docs/layers/accounts/deploy-accounts.mdx +++ b/docs/layers/accounts/deploy-accounts.mdx @@ -106,7 +106,7 @@ This guide walks through deploying AWS accounts using `atmos` workflows. Before atmos terraform output aws-account/core-artifacts -s core-gbl-root ``` - ### Update the Static Account Map + **Update the Static Account Map** Update the static account map in your organization's defaults file (`stacks/orgs/acme/_defaults.yaml`). This configuration provides account ID lookups for components that need them: