Organizations: Update trusted service pricipals (#6539)

moto/organizations/models.py

@@ -243,27 +243,44 @@ class FakeServiceAccess(BaseModel):
     # List of trusted services, which support trusted access with Organizations
     # https://docs.aws.amazon.com/organizations/latest/userguide/orgs_integrated-services-list.html
     TRUSTED_SERVICES = [
-        "aws-artifact-account-sync.amazonaws.com",
-        "backup.amazonaws.com",
-        "member.org.stacksets.cloudformation.amazonaws.com",
-        "cloudtrail.amazonaws.com",
-        "compute-optimizer.amazonaws.com",
-        "config.amazonaws.com",
-        "config-multiaccountsetup.amazonaws.com",
-        "controltower.amazonaws.com",
-        "ds.amazonaws.com",
-        "fms.amazonaws.com",
-        "guardduty.amazonaws.com",
         "access-analyzer.amazonaws.com",
-        "license-manager.amazonaws.com",
+        "account.amazonaws.com",  # AWS Account Management
-        "license-manager.member-account.amazonaws.com.",
+        "auditmanager.amazonaws.com",  # AWS Audit Manager
-        "macie.amazonaws.com",
+        "aws-artifact-account-sync.amazonaws.com",
-        "ram.amazonaws.com",
+        "backup.amazonaws.com",  # AWS Backup
-        "servicecatalog.amazonaws.com",
+        "cloudtrail.amazonaws.com",  # AWS Cloudtrail
-        "servicequotas.amazonaws.com",
+        "compute-optimizer.amazonaws.com",  # AWS Compute Optimizer
-        "sso.amazonaws.com",
+        "config.amazonaws.com",  # AWS Config
-        "ssm.amazonaws.com",
+        "config-multiaccountsetup.amazonaws.com",
-        "tagpolicies.tag.amazonaws.com",
+        "controltower.amazonaws.com",  # AWS Control Tower
+        "detective.amazonaws.com",  # AWS Detective
+        "devops-guru.amazonaws.com",  # Amazon DevOps Guru
+        "ds.amazonaws.com",  # AWS Directory Service
+        "fms.amazonaws.com",  # AWS Firewall Manager
+        "guardduty.amazonaws.com",  # Amazon GuardDuty
+        "health.amazonaws.com",  # Amazon Health
+        "inspector2.amazonaws.com",  # Amazon Inspector
+        "ipam.amazonaws.com",  # AWS VPC IP Address Manager
+        "license-manager.amazonaws.com",  # AWS License Manager
+        "license-manager.member-account.amazonaws.com.",  # AWS License Manager
+        "license-manager-linux-subscriptions.amazonaws.com",  # AWS License Manager
+        "license-management.marketplace.amazonaws.com",  # AWS Marketplace
+        "macie.amazonaws.com",  # Amazon Macie
+        "member.org.stacksets.cloudformation.amazonaws.com",
+        "mgn.amazonaws.com",  # AWS Application Migration Service
+        "ram.amazonaws.com",  # AWS Resource Access Manager
+        "reporting.trustedadvisor.amazonaws.com",  # AWS Trusted Advisor
+        "reachabilityanalyzer.networkinsights.amazonaws.com",  # Reachability Analyzer
+        "securityhub.amazonaws.com",  # AWS Security Hub
+        "storage-lens.s3.amazonaws.com",  # Amazon S3 Storage Lens
+        "securitylake.amazonaws.com",  # Amazon Security Lake
+        "servicecatalog.amazonaws.com",  # AWS Service Catalog
+        "servicequotas.amazonaws.com",  # Service Quotas
+        "stacksets.cloudformation.amazonaws.com",
+        "sso.amazonaws.com",  # AWS SSO
+        "ssm.amazonaws.com",  # AWS Systems Manager
+        "tagpolicies.tag.amazonaws.com",  # Tag policies
+        "wellarchitected.amazonaws.com",  # AWS Well Architected Tool
     ]
 
     def __init__(self, **kwargs: Any):