In order to run discovery jobs on multiple accounts in an AWS Organization, Cloud Discovery & Visibility (CDV) needs an AWS account with a role that has appropriate permissions to access those accounts. Before setting up this role, you must enable delegated administrator status on the AWS account that hosts CDV.
To do so, run the following command on the AWS account or Organization Unit (OU) that hosts CDV (that is, to which CDV is deployed). You will need the ID for the hosting account:
aws organizations register-delegated-administrator --account-id <AWS Account ID> --service-principal account.amazonaws.com
After you enable delegated administrator status, you can create a YML template for the a customized cross-account role.