2 réponses
- Le plus récent
- Le plus de votes
- La plupart des commentaires
1
We can consider to create an 'exceptions' OU. For AWS accounts (not at bucket level) that requires exception, we can place them in this OU. For more details, refers to: https://docs.aws.amazon.com/whitepapers/latest/organizing-your-aws-environment/exceptions-ou.html
répondu il y a 10 mois
0
Using the standard Control Tower control, unfortunately no there isn't. The best option would be to use a similar control (it's a Cloudformation guard rule). But define it yourself to have the exceptions required, following the guidance here: https://docs.aws.amazon.com/cfn-guard/latest/ug/writing-rules.html
As this is a CloudFormation guard rule, it's a proactive control, so will run against Cloudformation stacks when processes try to deploy them.
répondu il y a 10 mois
Contenus pertinents
- demandé il y a un mois
- demandé il y a 4 mois
- demandé il y a 6 mois
- AWS OFFICIELA mis à jour il y a 2 ans
- Comment puis-je accorder l’accès public en lecture à certains objets de mon compartiment Amazon S3 ?AWS OFFICIELA mis à jour il y a 2 ans
- AWS OFFICIELA mis à jour il y a 2 ans