I'm investigating users and groups in AWS and have some confusion regarding an AWS IAM Group and an Organizational Unit. They both seem to implement the same functionality such as organizing like accounts with similar tasks and assigning policies to groups of accounts. What are the differences? Any further insight would be appreciated.
An IAM group is a collection of IAM users, while an OU is a group of AWS accounts.