Questions tagged with AWS Control Tower
Content language: English
Select up to 5 tags to filter
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
Hello,
I'm supporting a client that have moved over to AWS Control Tower. They have leveraged AWS SSO with OKTA and have initiated in building their environment.
They queried if it was possible to...
3
answers
0
votes
1967
views
asked 2 years agolg...
Hello,
we are using AWS Control Tower and Account Factory for account provisioning.
We have protected management account root email following [recomended best...
1
answers
0
votes
2069
views
asked 2 years agolg...
Have a Control Tower Setup and in main account have set ABAC - SSMSessionRunAs = ${user:name} in AWS SSO. In one of the Workload accounts, I have configured Systems Manager Preferences with "Run As"...
1
answers
0
votes
801
views
asked 2 years agolg...
Hi, One of my cust has an AWS Organization & control tower with about 15 accounts. I wanted to enable Guardduty to about 10 accounts in them. Is it better to do at individual account level or in AWS...
1
answers
0
votes
793
views
asked 2 years agolg...
Hello, I am facing the following issue while trying to launch a control tower landing zone in a new AWS account:
AWS Control Tower failed to set up your landing zone completely: AWS Control Tower...
2
answers
0
votes
1695
views
asked 2 years agolg...
Hello, in our Test Org. we installed Control Tower like described in (https://www.youtube.com/watch?v=CwRy0t8nfgM) after that we set up IAM Access Analyzer, GuardDuty and SecurityHub like described in...
1
answers
0
votes
517
views
asked 2 years agolg...
Control Tower that the parent organizational unit is not enrolled in AWS Control Tower, when it islg...
I get the following error when i try to programmatically create a new account in a OU:
InvalidParametersException The parent organizational unit 'ou-xxx-xxx' is not enrolled in AWS Control...
1
answers
0
votes
1528
views
asked 2 years agolg...
Hi,
I have what I think is a common use case:
Control Tower creates an S3 Bucket in the Logging account where it centralizes all Cloudtrail and Config logs. Control Tower also deploys a mandatory...
1
answers
3
votes
3682
views
asked 2 years agolg...
Hi, is it possible to delete AWS Tower failed installation. I attempted to setup AWS Tower in my organization in the eu-west-1 region but the installation failed with an error "*AWS Control Tower...
3
answers
0
votes
1525
views
asked 2 years agolg...
If I start using IPAM and later on use Control Tower, will Control Tower use my IPAM integration? Or would i have to make a significant changes to for Control Tower to deploy VPCs using the AWS Pool...
2
answers
0
votes
721
views
asked 2 years agolg...
Control Tower has been enabled and has a number of accounts setup under it.
These accounts have all got AWS Config setup logging their changes to the Log Archive account central control tower bucket....
2
answers
0
votes
2081
views
asked 2 years agolg...
Hi all,
I'm attempting to deploy AWS Control Tower for a client. When I start the process, I get the following error - "Your AWS environment is not ready for AWS Control Tower to be set up. AWS...
5
answers
1
votes
2590
views
asked 3 years agolg...