Help us improve the AWS re:Post Knowledge Center by sharing your feedback in a brief survey. Your input can influence how we create and update our content to better support your AWS journey.
Questions tagged with AWS Control Tower
AWS Control Tower provides the easiest way to set up and govern a secure, multi-account AWS environment, called a landing zone.
Content language: English
Filter questions
Select tags to filter
Sort by
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
321 results
Hi all
I am encountering a `Bucket access denied` error in the `aws-controltower-BaselineCloudTrail` cloudtrail, specifically affecting only a subset of member accounts. While several other accounts ...
asked 7 days ago
**Background**: AWS Control Tower was deployed in an existing AWS Organization with 100s of AWS account. The AWSControlTowerExecution role was rolled out in bulk using AWS CloudFormation stackset in d...
asked a month ago
I tried following the steps: herehttps://repost.aws/questions/QUx25XcQFaQNic0VkqCu3bBw/how-can-i-properly-modify-a-bucket-managed-by-control-tower
However, after creating this role to assume and assi...
**Problem:**
I have an S3 bucket that was created and is managed by AWS Control Tower
**Solution:**
I need a solution that will allow me to modify the bucket just to change some of the S3 bucket poli...
What's the best way to achieve this?
**Problem:** I have a situation where I have an external service that is ingesting logs from conrol tower s3 bucket, previously, It was recommended by one o repl...
**Problem**:
I have a AWS environment that utilizes Control Tower, it previously automatically created a Log Archive Account. Within this account.
I need to modify the existing Control Tower S3 buck...
I see the previous error while upgrading cotnrol tower & i noticed also the control tower aneable the aws config only for the member account with ohio region ince the home region in the control tower ...
asked 2 months ago
I’m enrolling a new account into AWS Control Tower and the Control Tower baseline keeps failing. At the beginning it was with this error:
AWS Control Tower could not enroll your account for the follo...
I am using AWS Control Tower in my Management account to create new AWS member accounts. Is it possible to use AWS Control Tower Account Factory for Terraform (AFT) customization to assign AWS IAM Ide...
asked 2 months ago
I have an AWS Organizations and AWS Control Tower setup. My control tower uses AWS IAM Identity Center (IDC) which is linked to an External Identity Provider (Entra ID). AWS Control Tower creates prec...
asked 2 months ago
Hi all,
I have the following problem:
I have been dealing with a partially failed Control Tower setup with an incomplete account that can't be removed normally.
The account is closed but I want to...
I tried to destroy a cloudformation stack that was used to commission a landing zone.
The landing zone was commissioned via a CDK stack (I normally only deploy via CDK). And deployed (correctly???). ...