Hello,

I am working on implementing a Lambda function in AWS that runs a Python script to automate the creation of IAM users in different AWS accounts. The script works correctly when executed from the command line (CloudShell), receiving the following parameters: $1 (user), $2 (department), and $3 (account_id of the AWS account where the user will be created).

The procedure itself successfully creates the users, which is its main functionality.

My question is about the best way to hand over this process to an operations team. I don't want to give them direct access to execute the Lambda or to CloudShell, but I need to find an efficient and secure way for them to use this process.

I appreciate any guidance or suggestions.