Pre-Checks Failed when reregistering OU in Control Tower
I invited 2 AWS accounts into my AWS organization. Then, i moved the 2 accounts under one custom OU called Data Lake. The 2 accounts is not enrolled in my Control Tower yet so I reregister my custom OU (Data Lake) to my Control Tower to make sure those 2 accounts will be enrolled in my Control Tower. After let it run I got an error saying pre-checks failed.
After clicked my Data Lake OU i got the see the extra detail of that error
Then I clicked download precheck button and its a csv.
Please help me to solve this issue. Thank you in advance!
- Newest
- Most votes
- Most comments
Hello,
sometimes Control Tower is too busy when in demand...
Have you tried also submitting one account at a time ?
Hi,
The same error pop out even when trying with one account. May i know what is the main issue here?
It seems like the two accounts you added to the Data Lake OU are not fully enrolled in AWS Control Tower yet. When you register an OU, Control Tower needs to perform some pre-checks on the accounts within that OU before enrolling them.
One of the pre-checks is ensuring the IAM user used to manage accounts in Control Tower has the necessary permissions. It looks like this user may not have access to the AWS Service Catalog, which is required.
Check the permissions of the IAM user used by Control Tower and ensure it has the required permissions to access Service Catalog. You may need to modify the IAM policy.
Relevant content
asked 6 months ago- asked 2 years ago
- Accepted Answerasked 3 months ago
- Accepted Answerasked 2 years ago
AWS OFFICIALUpdated a year ago- AWS OFFICIALUpdated 7 months ago
- AWS OFFICIALUpdated 3 years ago
Isn't that already a clear indication of what you need to do ?