---
title: IAM Access Analyzer should be enabled at the organization level
description: Datadog, the leading service for cloud-scale monitoring.
breadcrumbs: >-
  Docs > Datadog Security > OOTB Rules > IAM Access Analyzer should be enabled
  at the organization level
---

# IAM Access Analyzer should be enabled at the organization level
 
## Description{% #description %}

IAM Access Analyzer should be enabled at the organization level rather than only at the individual account level. An organization-level analyzer provides centralized visibility into resource access across all member accounts, enabling a delegated administrator account to monitor and manage access findings from a single location. Account-level analyzers alone do not provide this cross-account visibility.

## Remediation{% #remediation %}

Enable IAM Access Analyzer at the organization level from the management account or a delegated administrator account. For guidance, refer to [Enabling IAM Access Analyzer](https://docs.aws.amazon.com/IAM/latest/UserGuide/access-analyzer-getting-started.html).