Questions tagged with AWS Control Tower
Content language: English
Select up to 5 tags to filter
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
We have set up AWS Organization, Control Tower, and IAm Identity Center. We have 3 OUs which are Security, Prod, and NonProd, keep in mind the Management Account is not under any OU (its in the root)....
1
answers
0
votes
168
views
asked 2 months agolg...
We mistakenly closed an account without first unmanaging it from Control Tower and now it's stuck in Control Tower and preventing further operations. Is there a way to force-remove this account?
2
answers
0
votes
107
views
asked 2 months agolg...
Deploy SCPs to OUslg...
Hi AWS, we have some set of JSON files having SCPs code stored in a version control tool which we need deployed within AWS Contol Tower to about multiple OUs. How to do that?
1
answers
0
votes
143
views
asked 2 months agolg...
I invited 2 AWS accounts into my AWS organization. Then, i moved the 2 accounts under one custom OU called Data Lake. The 2 accounts is not enrolled in my Control Tower yet so I reregister my custom...
1
answers
0
votes
163
views
asked 2 months agolg...
Hi I have a test AWS Organisation which was created using Control Tower. Some account were created by account factory and some were standalone accounts which were invited to join the org.
I now what...
1
answers
0
votes
323
views
asked 2 months agolg...
Hello,
I have enabled a control via Control Tower "[EC2.18] Security groups should only allow unrestricted incoming traffic for authorized ports" for a specific OU. I know how to manually change the...
1
answers
0
votes
486
views
asked 3 months agolg...
Hi, I am trying to enable Control Tower on a new account I am using to follow a training course. I get the following message:
Your AWS environment is not ready for AWS Control Tower to be set up....
2
answers
0
votes
642
views
asked 3 months agolg...
Currently, I have a environment that is running CFCT. It has outdated Python 3.7 all in the CFCT. I want to go to the LZA. Any guidance on how to remove the CFCT and not break resources etc. and...
2
answers
0
votes
390
views
asked 3 months agolg...
Hi,
Currently I would like to encrypt CloudTrail logs in my Root account via a KMS key managed by me.
This trail exists in all my environments due to the use of Control Tower, through the Root...
1
answers
0
votes
985
views
asked 3 months agolg...
Control Tower SCPlg...
I deployed Control Tower manually. Then I enabled multiple Controls manually to an OU under which there is my workload account. As soon as deployed all controls, I started getting multiple issues. it...
2
answers
0
votes
718
views
asked 4 months agolg...
I am getting the following error while creating a landing zone with Control Tower:
AWS Control Tower failed to set up your landing zone completely: AWS Control Tower failed to deploy stack(s):...
2
answers
0
votes
451
views
asked 4 months agolg...
What is the optimal strategy for consolidating multiple master accounts, each with a unique landing zone and associated VPCs linked to separate Transit Gateways, into a unified landing zone where all...
1
answers
1
votes
631
views