Questions tagged with AWS Control Tower
Content language: English
Select up to 5 tags to filter
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
Hi team.
I have some questions abot vpc flow logs.
1. I have Control Tower, and a Log Archive account with 02 buckets:
aws-controltower-logs-
aws-controltower-s3-access-logs-
By default when Account...
1
answers
0
votes
331
views
asked 6 months agolg...
Hello Team.
I have some questions:
1.- I have Control Tower implemented, this created Log Archive account, where I understand all logs from accounts are stored, rigth?, logs from Cloudtrail, Config...
1
answers
0
votes
355
views
asked 6 months agolg...
Hi Team.
I have implemented Control Tower, Controls (Guardrails) and Conformance Packs for all accounts. After that, I received many sns notifications from email audit account.
I understand that I...
1
answers
0
votes
241
views
asked 6 months agolg...
Hi Team.
I have installed AWS Control Tower, and I see that sns topics were enabled on Audit Account and every account members. Also I see lambda (named notification forwarder) as subscriptor of sns...
1
answers
0
votes
202
views
asked 6 months agolg...
Hello team.
I am enabling controls in Control Tower for OU that contains Shared Account (Log and Audit) and others OUs.
I have enabled this control: Disallow Actions as a Root User, but when the...
1
answers
0
votes
387
views
asked 6 months agolg...
AWS Control Tower Controls - Disallow Changes to Encryption Configuration for Amazon S3 Bucketslg...
Hello.
I have enabled this control Disallow Changes to Encryption Configuration for Amazon S3 Buckets from AWS Control Tower, after that, when I try to create a S3 bucket, I receive this error:...
1
answers
0
votes
200
views
asked 6 months agolg...
Hello.
I am implementing Controls (guardrails) with Control Tower. Per example I have enabled "Disallow Actions as a Root User" in ine OU, so when I try to do something with root user, it is no...
1
answers
0
votes
323
views
asked 6 months agolg...
Hello.
I implemented Control Tower, and according to documentation https://docs.aws.amazon.com/controltower/latest/userguide/how-control-tower-works.html, a AWS Config aggregator named...
3
answers
1
votes
418
views
asked 6 months agolg...
Hi, I am searching for best way how to configure "tags on creation" for the AWS Config logs written by AWS Control Tower.
**Situation:**
* AWS Control Tower is logging all configuration changes....
1
answers
0
votes
235
views
asked 7 months agolg...
Cannot connect to my EC2 instances via SSH or browser public IP for the accounts in an organization using control tower. I've tested it in 3 different AWS accounts. 1 with ec2 that is accessible but...
1
answers
1
votes
296
views
asked 7 months agolg...
Long story short I was tidying up an account I have deleted AWSControlTowerExecution role and I'm unable to re-enrol the account nor am I able to create the AWSControlTowerExecution role as it is...
2
answers
0
votes
167
views
asked 7 months agolg...
Hi, I am searching for best way how to **exclude** a specific prefix in S3 replication rule and am not able to find a suitable answer in AWS documentation.
**Requirements:**
* Environment is a...
3
answers
0
votes
731
views
asked 7 months agolg...