Questions tagged with AWS Control Tower
Content language: English
Select up to 5 tags to filter
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
Hi,
Actually we try to generate a policy based on CloudTrail events, but we have Control Tower and a centralized bucket for all cloudtrails to all our accounts.
We follow this blog:...
2
answers
0
votes
232
views
asked 2 years agolg...
The issue is our accounts are in control tower environment and in control tower there are no options to add config rules other than Predefined ones, in those predefined ones there is non for security...
2
answers
0
votes
304
views
asked 2 years agolg...
I am getting "Landing zone drift detected" while accessing control tower and cause of this issue is listed as
The core account, Log archive **** was removed from your organization in AWS...
1
answers
0
votes
1326
views
asked 2 years agolg...
Hi all,
I got this issue when setup Control Tower.
"AWS Control Tower failed to set up your landing zone completely: AWS Control Tower is not authorized to baseline the VPC in the enrolled...
1
answers
0
votes
2280
views
asked 2 years agolg...
Hi,
I am trying to enrol an existing account into my Control Tower Landing zone. The account was originally a member of a different AWS Organization, it was removed from that organization and joined...
Accepted AnswerAWS Control Tower
2
answers
0
votes
1874
views
asked 2 years agolg...
After setting up AWS Control Tower I noticed that the S3 access logging bucket created under the Log Archive account, has logging enabled (and logging to the same bucket). This creates a situation...
1
answers
2
votes
1747
views
asked 2 years agolg...
I created a new organization using AWS Control Tower (version 3.0). It seems that it has created two aggregators:
* An accounts aggregator under the audit account named control...
1
answers
0
votes
1384
views
asked 2 years agolg...
Hello,
I am trying to figure something out that I noticed during my deployment of AWS Control Tower. There seems to be something different then I expected in the account page of the Control Tower...
1
answers
0
votes
506
views
asked 2 years agolg...
Hi im am not very familiar with AWS CLI or any iac code there but im looking for an option to create OUs in Control Tower programmatically with a bundle of selected Guardrails. Because the Guardrails...
1
answers
0
votes
993
views
asked 2 years agolg...
I'd like to know it is possible or not to build multiple control tower in single management(payer) account. If possible, how to implement it?
I think it would be good to organize resources when it's...
1
answers
0
votes
1000
views
asked 2 years agolg...
Hello if you use the Region deny option in AWS Control Tower ist set the Guardrail: Deny access to AWS based on the requested AWS RegionInfo. In this Guardrail the SCP is missing the global Service...
1
answers
0
votes
625
views
asked 2 years agolg...
Hello, I'm trying to create accounts with AWS Control Tower. However, when creating the 6th account the message is displayed "AWS Control Tower cannot create an account because you have reached the...
2
answers
0
votes
1592
views
asked 2 years agolg...