Questions tagged with AWS Control Tower
Content language: English
Select up to 5 tags to filter
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
We mistakenly closed an account without first unmanaging it from Control Tower and now it's stuck in Control Tower and preventing further operations. Is there a way to force-remove this account?
2
answers
0
votes
105
views
asked 2 months agolg...
Deploy SCPs to OUslg...
Hi AWS, we have some set of JSON files having SCPs code stored in a version control tool which we need deployed within AWS Contol Tower to about multiple OUs. How to do that?
1
answers
0
votes
139
views
asked 2 months agolg...
I invited 2 AWS accounts into my AWS organization. Then, i moved the 2 accounts under one custom OU called Data Lake. The 2 accounts is not enrolled in my Control Tower yet so I reregister my custom...
1
answers
0
votes
156
views
asked 2 months agolg...
Hi I have a test AWS Organisation which was created using Control Tower. Some account were created by account factory and some were standalone accounts which were invited to join the org.
I now what...
1
answers
0
votes
320
views
asked 2 months agolg...
Hello,
I have enabled a control via Control Tower "[EC2.18] Security groups should only allow unrestricted incoming traffic for authorized ports" for a specific OU. I know how to manually change the...
1
answers
0
votes
482
views
asked 2 months agolg...
Hi, I am trying to enable Control Tower on a new account I am using to follow a training course. I get the following message:
Your AWS environment is not ready for AWS Control Tower to be set up....
2
answers
0
votes
621
views
asked 3 months agolg...
Currently, I have a environment that is running CFCT. It has outdated Python 3.7 all in the CFCT. I want to go to the LZA. Any guidance on how to remove the CFCT and not break resources etc. and...
2
answers
0
votes
387
views
asked 3 months agolg...
Hi,
Currently I would like to encrypt CloudTrail logs in my Root account via a KMS key managed by me.
This trail exists in all my environments due to the use of Control Tower, through the Root...
1
answers
0
votes
979
views
asked 3 months agolg...
Control Tower SCPlg...
I deployed Control Tower manually. Then I enabled multiple Controls manually to an OU under which there is my workload account. As soon as deployed all controls, I started getting multiple issues. it...
2
answers
0
votes
703
views
asked 4 months agolg...
I am getting the following error while creating a landing zone with Control Tower:
AWS Control Tower failed to set up your landing zone completely: AWS Control Tower failed to deploy stack(s):...
2
answers
0
votes
448
views
asked 4 months agolg...
What is the optimal strategy for consolidating multiple master accounts, each with a unique landing zone and associated VPCs linked to separate Transit Gateways, into a unified landing zone where all...
1
answers
1
votes
628
views
Our AWS org has duplicate SCPs from Control Tower. They are the exact same policy document. But applied to different OUs. I have a couple of questions.
1) Where do the duplicates come from? And will...
1
answers
0
votes
469
views
asked 4 months agolg...