How to Track Resources Across Multiple AWS Accounts?

You might want to consider using the built-in resource explorer. However, if you have teams managing their own AWS accounts but still want oversight, it's a tricky situation. You really have to decide if you want them to take responsibility for their resources or if it's better for your team to be fully in control. You could also explore cost usage reports or other tools, but without an organizational-wide control structure, things might get complicated.

I can relate to your situation! We found Steampipe to be quite handy for tracking resources across accounts. If you're up for it, you could also roll out a simple Python script to iterate over your accounts and aggregate the data. It's quite straightforward and effective compared to some of the more complicated setups we’ve had before. AWS Config is an option too, but it can be a pain to deal with.

For a fast track to visibility across those 30 accounts, enabling AWS Resource Explorer at the org level is your best bet. It may not provide deep insights into security posture, but it effectively gives you a resource overview. If you also want insights on security misconfigurations, consider layering in AWS Config to complement your resource inventory.

Definitely go with a cloud asset inventory solution. You can use AWS Resource Explorer, AWS Config, or even third-party tools for better tracking. For a quick solution, having an aggregator enabled at the organizational level in AWS Resource Explorer could help you create an inventory without needing major changes to your current setup.