1 Answers
0
Hi, many customers have the requirement that no network traffic leaves their VPC and transits to the internet. This feature provides all the endpoints the AFT solution may need to connect to AWS services privately (without hitting the public endpoints).
You can turn the endpoints off by adding this variable to your AFT module deployment, aft_vpc_endpoints = false
answered a month ago
Relevant questions
Terraform AFT / Rename an account
asked 4 months agoWhich AWS Account or Organization Unit should be Account Management delegated admin
asked 2 months agoDoes AWS Control Tower have integrations with the AWS VPC IPAM service?
asked 7 months agoControl Tower / Account Factory / Email Validation
asked 4 months agoAmazon DynamoDB across account access with VPC endpoints
Accepted Answerasked 3 years agoIAM as code - centralize the management of IAM roles and policies in a multi-account organization
Accepted Answerasked 2 years agoBilling for cross-account VPC peering
Accepted Answerasked 2 years agoControl Tower Account Factory for Terraform (AFT) not creating accounts as expected
asked 6 months agoVPC Endpoint for AWS Account Factory for Terraform Management Account
asked a month agodefault VPC for my old AWS account
Accepted Answerasked 4 years ago