AWS RAM Infographic
AWS Networking

Resource Access Manager (RAM)

Eliminate resource duplication by securely sharing Subnets, Transit Gateways, and more across your AWS accounts.

The Ingredients

Resource Owner

The account that creates the resource and initiates the share.

Shareable Resource

Subnets, Transit Gateways, Route 53 Resolver rules, or Licenses.

Principals

Individual accounts, OUs, or an entire AWS Organization.

Permissions

Managed permissions that define how consumers use the resource.

The Sharing Process

ACCOUNT A

(Owner)

VPC / Subnet

AWS RAM

ACCOUNT B

(Consumer)

EC2 Instance
“I own the Subnet and pay for the VPC.”
“I facilitate the handshake and trust.”
“I launch my instances into your Subnet.”

Cost Effective

RAM itself is free. You only pay for the underlying resources (e.g., Transit Gateway data processing).

Org Integration

If sharing within an AWS Organization, you can skip the “Accept Invitation” handshake step entirely.

Security First

Consumers cannot delete the shared resource or view resources they aren’t authorized to see.

AWS Architecture Series • Resource Access Manager • 2023
Scroll to Top