Questions tagged with AWS Control Tower
Content language: English
Select up to 5 tags to filter
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
I invited 2 AWS accounts into my AWS organization. Then, i moved the 2 accounts under one custom OU called Data Lake. The 2 accounts is not enrolled in my Control Tower yet so I reregister my custom...
1
answers
0
votes
145
views
asked 2 months agolg...
Hi I have a test AWS Organisation which was created using Control Tower. Some account were created by account factory and some were standalone accounts which were invited to join the org.
I now what...
1
answers
0
votes
313
views
asked 2 months agolg...
Hello,
I have enabled a control via Control Tower "[EC2.18] Security groups should only allow unrestricted incoming traffic for authorized ports" for a specific OU. I know how to manually change the...
1
answers
0
votes
469
views
asked 2 months agolg...
Hi, I am trying to enable Control Tower on a new account I am using to follow a training course. I get the following message:
Your AWS environment is not ready for AWS Control Tower to be set up....
2
answers
0
votes
602
views
asked 3 months agolg...
Currently, I have a environment that is running CFCT. It has outdated Python 3.7 all in the CFCT. I want to go to the LZA. Any guidance on how to remove the CFCT and not break resources etc. and...
2
answers
0
votes
377
views
asked 3 months agolg...
Hi,
Currently I would like to encrypt CloudTrail logs in my Root account via a KMS key managed by me.
This trail exists in all my environments due to the use of Control Tower, through the Root...
1
answers
0
votes
963
views
asked 3 months agolg...
Control Tower SCPlg...
I deployed Control Tower manually. Then I enabled multiple Controls manually to an OU under which there is my workload account. As soon as deployed all controls, I started getting multiple issues. it...
2
answers
0
votes
659
views
asked 3 months agolg...
I am getting the following error while creating a landing zone with Control Tower:
AWS Control Tower failed to set up your landing zone completely: AWS Control Tower failed to deploy stack(s):...
2
answers
0
votes
433
views
asked 3 months agolg...
What is the optimal strategy for consolidating multiple master accounts, each with a unique landing zone and associated VPCs linked to separate Transit Gateways, into a unified landing zone where all...
1
answers
1
votes
622
views
Our AWS org has duplicate SCPs from Control Tower. They are the exact same policy document. But applied to different OUs. I have a couple of questions.
1) Where do the duplicates come from? And will...
1
answers
0
votes
461
views
asked 4 months agolg...
Hey everyone,
I know the process of inviting a standalone account to Organization but I thought would like to double check if there are additional steps to keep in mind, because this standalone...
2
answers
0
votes
577
views
asked 4 months agolg...
Hi!
Recently I've been automating account creation in Control Tower using Service Catalog APIs as it's explained in this docs:...
1
answers
0
votes
465
views
asked 4 months agolg...