Why Telophase?

Automation and Compliance are key concerns when adopting multi-account AWS. Telophase orchestrates the management of AWS Organizations alongside your infrastructure-as-code (IaC) provider, like Terraform or CDK. Using a single tool for these allows:
  1. Workflow Automation: Automates account creation and decommissioning, integrating with existing automation workflows, like CI or ServiceNow.
  2. IaC & Account Binding: Enables binding accounts to specific IaC blueprints for automatic provisioning of baseline resources.
  3. Easier Compliance Deployment: Enables binding Service Control Policies (SCPs) to accounts as part of your Account provisioning workflow to make sure every Account is compliant. We make it easy to test SCPs before they are deployed.
Currently, Telophase is a CLI tool only. In the future, we plan to offer a web UI.

Install

If you’d like another method, please let us know by opening an issue!

Go

go install github.com/santiago-labs/telophasecli@latest

Homebrew

brew tap Santiago-Labs/telophasecli
brew install telophasecli

Features

Manage AWS Organizations

Manage your AWS organizations via an organizations.yml file.

Assign IaC Blueprints to Accounts

Assign Terraform, Cloudformation or CDK Stacks to Organization Units or Organizations to provision infrastructure in across your Organizations.

Service Control Policies

Configuring Service Control Policies (SCPs).

Using the Terminal UI

Learn how to use the Terminal UI with telophasecli

Testing

Using localstack to test changes to your AWS Organization.

Commands

telophasecli diff

Render a diff of your Organizations and Infrastructure from your code to what is currently deployed.

telophasecli deploy

Provision new organizations and infrastructure within them.

Account Import

Import your current AWS organizations into an organization.yml file.