Control Tower Enrollment Error

0

Hi,

I created some (5) new accounts via the AWS Organization (which I shouldn't have, should be using the Control Tower) and trying to enroll them into the Control Tower. It was fine for the first 2 accounts, however, things started to fail for the remaining 3.

I'm getting error as follows:

AWS Control Tower cannot enroll the account. There's an error in the provisioned product in AWS Service Catalog: ProvisionedProduct with Name: null and Id: pp-joe7ydrgkjqja doesn't exist
AWS Control Tower cannot enroll the account. There's an error in the provisioned product in AWS Service Catalog: ProvisionedProduct with Name: null and Id: pp-pqglnk2ru554w doesn't exist

I've gone through the troubleshooting guide and also have the AWSControlTowerExecution role setup. The first 2 accounts were enrolled with no problems, so not sure why subsequent ones failed. I can't find any of the Id in the Service Catelog serice as well and there isn't any errors there.

Something seems to be broken at the backend. Anyone can help?

Thanks!

已提問 1 年前檢視次數 1601 次
1 個回答
0

Please check if the user has been added to the appropriate permission group. You may need to add your IAM Identity Center user to one of these permission groups: AWSAccountFactory (for end-user access) or AWSServiceCatalogAdmins (for admin access).

profile pictureAWS
已回答 1 年前

您尚未登入。 登入 去張貼答案。

一個好的回答可以清楚地回答問題並提供建設性的意見回饋,同時有助於提問者的專業成長。

回答問題指南