Questions tagged with AWS Control Tower
Content language: English
Select up to 5 tags to filter
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
Hi,
Currently I would like to encrypt CloudTrail logs in my Root account via a KMS key managed by me.
This trail exists in all my environments due to the use of Control Tower, through the Root...
1
answers
0
votes
1004
views
asked 4 months agolg...
Control Tower SCPlg...
I deployed Control Tower manually. Then I enabled multiple Controls manually to an OU under which there is my workload account. As soon as deployed all controls, I started getting multiple issues. it...
2
answers
0
votes
783
views
asked 4 months agolg...
I am getting the following error while creating a landing zone with Control Tower:
AWS Control Tower failed to set up your landing zone completely: AWS Control Tower failed to deploy stack(s):...
2
answers
0
votes
473
views
asked 4 months agolg...
What is the optimal strategy for consolidating multiple master accounts, each with a unique landing zone and associated VPCs linked to separate Transit Gateways, into a unified landing zone where all...
1
answers
1
votes
641
views
Our AWS org has duplicate SCPs from Control Tower. They are the exact same policy document. But applied to different OUs. I have a couple of questions.
1) Where do the duplicates come from? And will...
1
answers
0
votes
485
views
asked 5 months agolg...
Hey everyone,
I know the process of inviting a standalone account to Organization but I thought would like to double check if there are additional steps to keep in mind, because this standalone...
2
answers
0
votes
727
views
asked 5 months agolg...
Hi!
Recently I've been automating account creation in Control Tower using Service Catalog APIs as it's explained in this docs:...
1
answers
0
votes
503
views
asked 5 months agolg...
We are currently in the process of migrating old accounts to a new AWS Organization. The new Organization is set up with Control Tower, which means all accounts in the Organization automatically have...
2
answers
0
votes
504
views
asked 5 months agolg...
Shared accounts were incorrectly identified during landing zone setup. Now Control Tower is in a failed state and the shared account section of the setup parameters is greyed out. Control Tower is...
2
answers
0
votes
536
views
asked 5 months agolg...
I'm reading AWS documentation to launch a Control Tower's landing zone using CloudFormation. I want to do on an existing organization with multiple accounts and the template below has to be deployed...
1
answers
0
votes
236
views
asked 5 months agolg...
Hello Team !
I'm getting this following error executing control tower through newly launched Create-landing-zone API. But I dont have IAM Identity centre requests in progress![Enter image description...
1
answers
0
votes
214
views
asked 5 months agolg...
Got an issue where Control Tower Account Factory could not create new account and error received was "AWS Control Tower cannot enrol the account. There's an error in the provisioned product in AWS...
1
answers
0
votes
187
views
asked 6 months agolg...