Questions tagged with AWS Control Tower
Content language: English
Select up to 5 tags to filter
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
Hi im am not very familiar with AWS CLI or any iac code there but im looking for an option to create OUs in Control Tower programmatically with a bundle of selected Guardrails. Because the Guardrails...
1
answers
0
votes
960
views
asked 2 years agolg...
I'd like to know it is possible or not to build multiple control tower in single management(payer) account. If possible, how to implement it?
I think it would be good to organize resources when it's...
1
answers
0
votes
944
views
asked 2 years agolg...
Hello if you use the Region deny option in AWS Control Tower ist set the Guardrail: Deny access to AWS based on the requested AWS RegionInfo. In this Guardrail the SCP is missing the global Service...
1
answers
0
votes
599
views
asked 2 years agolg...
Hello, I'm trying to create accounts with AWS Control Tower. However, when creating the 6th account the message is displayed "AWS Control Tower cannot create an account because you have reached the...
2
answers
0
votes
1504
views
asked 2 years agolg...
Hey,
We have an existing account, we tried to add to control tower enrollment. It failed and compliance status is unknown.
So tried to recover by deleting the account factory provisioned product...
1
answers
0
votes
398
views
asked 2 years agolg...
AWS best practice is to unmanage a member account before closing it. I can use the CloseAccount API to close the account, but the documentation is not clear on a scripted method to unmanage an AWS...
1
answers
0
votes
386
views
asked 2 years agolg...
Can someone please explain what the difference is between the Trail that is created when you create Control Tower versus an Organizational Trail? I created an Org Trail and when i create a new OU, i...
2
answers
0
votes
2114
views
asked 2 years agolg...
I can use the AWS Control Tower account factory API to provision new managed AWS accounts. I also need to be able to delete AWS accounts with code when they are no longer required. Is there a...
1
answers
0
votes
754
views
asked 2 years agolg...
We have one main AWS account in which we have provisioned many member accounts. As the number of our accounts has increased lately, we have this situation where the root email address gets separate...
3
answers
0
votes
544
views
asked 2 years agolg...
Can anyone explain why do we have so many VPC Endpoints in the AWS Account Factory for Terraform Management Account. It is incurring me cost, can I remove them and still operate AFT?
1
answers
1
votes
707
views
asked 2 years agolg...
Hello is it possible to set a subscription filter policy on the topic to just get the "complianceType": "NON_COMPLIANT" messages. Im lost in this filter policies.
tried
`{
"complianceType": [
...
1
answers
0
votes
320
views
asked 2 years agolg...
Can anyone help with possible challenges we may face while migrating from AWS Landing Zone to AWS Control Tower. The AVM has been customized, hence wondering if anyone has been in similar situation.
1
answers
0
votes
927
views
asked 2 years agolg...