By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

AWS Control Tower - SNS notifications

0

Hi Team.

I have installed AWS Control Tower, and I see that sns topics were enabled on Audit Account and every account members. Also I see lambda (named notification forwarder) as subscriptor of sns topic on every account. on the other hand, I see AWS Config was enabled on every account, and it has delivery method to S3 and SNS topic from the Audit Account.

So, I dont understand why there is a sns on every account, if the AWS Config has configured another SNS topic from Audit Account, or when is used sns local and sns audit account?

Thank you.

Topics
Management & GovernanceApplication Integration
Tags
AWS ConfigAWS Control TowerAmazon Simple Notification Service (SNS)
Language
English
Orlando
asked 7 months ago212 views
1 Answer
1

Hi Orlando,

The SNS topic in every account has a destination of lambda forwarder, which forwards the notification to the SNS topic in the Audit account which sends an email to the Audit account email ID. Think of it as a notification collection mechanism from member accounts. Also note that the management account does not have an SNS topic created for control tower.

Karn C
answered 6 months ago
  • xnotm
    2 months ago

    Can you please clarify why the management account does not have the SNS topic?

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content