Questions tagged with AWS Control Tower
Content language: English
Select up to 5 tags to filter
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
I currently have multiple AWS accounts under a single OU. I want to launch Control Tower in a NEW management account, and then register the existing OU to the Control Tower. What will happen to...
1
answers
0
votes
218
views
asked 7 months agolg...
I am trying to add an identity center group with associated permissions to the account being created by Account Factory by using a Blue print. I have tried a number of things, the latest of which...
0
answers
0
votes
63
views
asked 7 months agolg...
Hello team,
Can we create custom preventive and detective control on aws control tower with AFT
1
answers
0
votes
289
views
asked 7 months agolg...
We start using Control Tower via console and it automatically sets security account and sandbox account. And Im using AFT for additional account requests.
Is there any way I can automate the setup of...
2
answers
0
votes
229
views
asked 7 months agolg...
I'm trying to run a Control Tower setup in an account that I've had for years but has little content in it.
The Error I receive is:
AWS Control Tower failed to set up your landing zone completely:...
3
answers
0
votes
478
views
asked 7 months agolg...
What can I do if I tried to redo the Control Tower setup but didn't remove the old audit and log-archive accounts? The setup is locked and can't change the names of the log-archive and audit accounts....
2
answers
0
votes
223
views
asked 7 months agolg...
Hi team.
I have some questions abot vpc flow logs.
1. I have Control Tower, and a Log Archive account with 02 buckets:
aws-controltower-logs-
aws-controltower-s3-access-logs-
By default when Account...
1
answers
0
votes
389
views
asked 8 months agolg...
Hello Team.
I have some questions:
1.- I have Control Tower implemented, this created Log Archive account, where I understand all logs from accounts are stored, rigth?, logs from Cloudtrail, Config...
1
answers
0
votes
446
views
asked 8 months agolg...
Hi Team.
I have implemented Control Tower, Controls (Guardrails) and Conformance Packs for all accounts. After that, I received many sns notifications from email audit account.
I understand that I...
1
answers
0
votes
282
views
asked 8 months agolg...
Hi Team.
I have installed AWS Control Tower, and I see that sns topics were enabled on Audit Account and every account members. Also I see lambda (named notification forwarder) as subscriptor of sns...
1
answers
0
votes
245
views
asked 8 months agolg...
Hello team.
I am enabling controls in Control Tower for OU that contains Shared Account (Log and Audit) and others OUs.
I have enabled this control: Disallow Actions as a Root User, but when the...
1
answers
0
votes
428
views
asked 8 months agolg...
AWS Control Tower Controls - Disallow Changes to Encryption Configuration for Amazon S3 Bucketslg...
Hello.
I have enabled this control Disallow Changes to Encryption Configuration for Amazon S3 Buckets from AWS Control Tower, after that, when I try to create a S3 bucket, I receive this error:...
1
answers
0
votes
235
views
asked 8 months agolg...