Adding GorillaStack to new AWS accounts was always the greatest sticking point with our customers.
We decided to overhaul our onboarding interface and backend mechanism, for ease of use and understanding.
We now create a CloudFormation stack containing the role and policy required for secure cross account access, and post the ARN back to our API. This dramatically reduces the number of steps you have to perform when linking an account and has the added benefit of containing all resources in a single CloudFormation template!
Try this out on the next AWS account you want to link to GorillaStack, and let us know what you think!