Questions tagged with AWS Control Tower
Content language: English
Select up to 5 tags to filter
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
Hello everyone. Hope you're doing fantastic!
My Control Tower got stuck in this stage.
Trying to fix this, I deleted the Organization, every role, policy, related to control tower on the shared, and...
1
answers
0
votes
324
views
asked 10 months agolg...
I am getting error while deploying Amazon Macie integration with Control Tower using the https://github.com/AdamDivall/CfCT-Amazon-Macie resource. The error that happens on CustomResourceEnableMacie...
2
answers
0
votes
417
views
asked 10 months agolg...
Hello,
I wanted to create a Control tower landing zone but I miss to check the regions and it choose us-east-1 instead of eu-west-3 where my IAM identity Center is configured. I don't know it could...
3
answers
0
votes
521
views
asked 10 months agolg...
I have a requirement.
I have created a Landing Zone using Control Tower. One of my external AWS account needs access to the Logging member account and access resources inside the Logging account,
How...
1
answers
1
votes
252
views
asked 10 months agolg...
In the process of decommission of AWS Control Tower from us-east-2, and start a new AWS Control Tower in us-east-1.
Getting this error message:
Error
AWS Control Tower failed to set up your landing...
1
answers
0
votes
308
views
asked 10 months agolg...
Steps to reproduce issue :
* Control tower landing zone is configured
* Config recorder for audit account has been accidentally deleted through CLI
* Try to Update Landing zone
* Failed with error :...
1
answers
0
votes
301
views
asked 10 months agolg...
Background: I have provisioned a new control tower. It did setup the IAM identity centre along with it. I updated the directory DNS to e.g. "XYZ". Later my team suggested we should update the sso url...
1
answers
0
votes
317
views
asked 10 months agolg...
I am getting "Landing zone drift detected" while accessing control tower and cause of this issue is listed as:
""A managed SCP was deleted, detached, or modified on the core OU Security (****), so...
1
answers
0
votes
457
views
asked a year agolg...
IHAC that attempted to decommission a Landing Zone using the prescriptive guidance in the documentation. They were unable to delete the AWSServiceRoleforAWSControlTower role because it stated it...
1
answers
0
votes
222
views
asked a year agolg...
Hi,
I have just run Control Tower successfully in a new account. Everything created without error, however, when I go to the dashboard, the newly created Audit and Log shared accounts both show...
2
answers
0
votes
378
views
asked a year agolg...
Hi,
Is there a way to rollback the customization applied through AFT?
For example, how to rollback the "aws_s3_account_public_access_block" created resource deployed as a global customization.
For...
1
answers
0
votes
330
views
asked a year agolg...
Modify default permissions sets / groups using Account Factory for Terraform (AFT) Control Towerlg...
Hi,
Is there a way to modify the default permission sets / groups that are associated to a new AWS account during its provisioning using AFT?
I'm looking for a solution that does not involve modifying...
0
answers
0
votes
125
views
asked a year agolg...