Questions tagged with AWS Control Tower
Content language: English
Select up to 5 tags to filter
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
What can I do if I tried to redo the Control Tower setup but didn't remove the old audit and log-archive accounts? The setup is locked and can't change the names of the log-archive and audit accounts....
2
answers
0
votes
241
views
asked 8 months agolg...
Hi team.
I have some questions abot vpc flow logs.
1. I have Control Tower, and a Log Archive account with 02 buckets:
aws-controltower-logs-
aws-controltower-s3-access-logs-
By default when Account...
1
answers
0
votes
428
views
asked 8 months agolg...
Hello Team.
I have some questions:
1.- I have Control Tower implemented, this created Log Archive account, where I understand all logs from accounts are stored, rigth?, logs from Cloudtrail, Config...
1
answers
0
votes
490
views
asked 8 months agolg...
Hi Team.
I have implemented Control Tower, Controls (Guardrails) and Conformance Packs for all accounts. After that, I received many sns notifications from email audit account.
I understand that I...
1
answers
0
votes
311
views
asked 8 months agolg...
Hi Team.
I have installed AWS Control Tower, and I see that sns topics were enabled on Audit Account and every account members. Also I see lambda (named notification forwarder) as subscriptor of sns...
1
answers
0
votes
275
views
asked 8 months agolg...
Hello team.
I am enabling controls in Control Tower for OU that contains Shared Account (Log and Audit) and others OUs.
I have enabled this control: Disallow Actions as a Root User, but when the...
1
answers
0
votes
445
views
asked 8 months agolg...
AWS Control Tower Controls - Disallow Changes to Encryption Configuration for Amazon S3 Bucketslg...
Hello.
I have enabled this control Disallow Changes to Encryption Configuration for Amazon S3 Buckets from AWS Control Tower, after that, when I try to create a S3 bucket, I receive this error:...
1
answers
0
votes
252
views
asked 8 months agolg...
Hello.
I am implementing Controls (guardrails) with Control Tower. Per example I have enabled "Disallow Actions as a Root User" in ine OU, so when I try to do something with root user, it is no...
1
answers
0
votes
396
views
asked 8 months agolg...
Hello.
I implemented Control Tower, and according to documentation https://docs.aws.amazon.com/controltower/latest/userguide/how-control-tower-works.html, a AWS Config aggregator named...
3
answers
1
votes
586
views
asked 8 months agolg...
Hi, I am searching for best way how to configure "tags on creation" for the AWS Config logs written by AWS Control Tower.
**Situation:**
* AWS Control Tower is logging all configuration changes....
1
answers
0
votes
288
views
asked 8 months agolg...
Cannot connect to my EC2 instances via SSH or browser public IP for the accounts in an organization using control tower. I've tested it in 3 different AWS accounts. 1 with ec2 that is accessible but...
1
answers
1
votes
379
views
asked 9 months agolg...
Long story short I was tidying up an account I have deleted AWSControlTowerExecution role and I'm unable to re-enrol the account nor am I able to create the AWSControlTowerExecution role as it is...
2
answers
0
votes
213
views
asked 9 months agolg...