AWS Control Tower
E293785
AWS Control Tower is a managed AWS service that helps organizations set up, govern, and secure multi-account cloud environments using best-practice blueprints and automated guardrails.
All labels observed (1)
| Label | Occurrences |
|---|---|
| AWS Control Tower canonical | 1 |
Statements (49)
| Predicate | Object |
|---|---|
| instanceOf |
cloud governance service
ⓘ
managed AWS service ⓘ |
| accessedVia |
AWS CLI
ⓘ
AWS Management Console ⓘ AWS SDKs ⓘ |
| basedOn |
AWS Well-Architected best practices
ⓘ
AWS security best practices ⓘ |
| deploymentModel | fully managed service ⓘ |
| developer | Amazon Web Services ⓘ |
| enforces |
detective guardrails
ⓘ
mandatory guardrails ⓘ preventive guardrails ⓘ |
| feature |
account factory
ⓘ
dashboard for governance visibility ⓘ guardrail management ⓘ landing zone creation ⓘ |
| governs | member accounts in an AWS Organization ⓘ |
| integratesWith |
AWS CloudTrail
ⓘ
AWS Config ⓘ AWS Identity and Access Management ⓘ AWS Organizations ⓘ AWS Security Hub ⓘ AWS Service Catalog ⓘ AWS Single Sign-On (IAM Identity Center successor) ⓘ
surface form:
AWS Single Sign-On
Amazon CloudWatch ⓘ |
| introduced | 2019 ⓘ |
| operatesOn |
Amazon Web Services
ⓘ
surface form:
AWS cloud
|
| pricingModel |
charges apply for underlying AWS services it configures
ⓘ
no additional charge for service itself ⓘ |
| provider | Amazon Web Services ⓘ |
| provides |
automated account provisioning
ⓘ
centralized governance ⓘ centralized security baselines ⓘ preconfigured logging ⓘ preconfigured monitoring ⓘ preconfigured security controls ⓘ |
| purpose |
govern AWS multi-account environments
ⓘ
secure AWS multi-account environments ⓘ set up multi-account AWS environments ⓘ |
| regionAvailability | multiple AWS regions ⓘ |
| supports |
centralized identity management
ⓘ
centralized logging accounts ⓘ governed account vending ⓘ multi-account AWS environments ⓘ optional guardrails ⓘ security audit accounts ⓘ strongly recommended guardrails ⓘ |
| uses |
automated guardrails
ⓘ
best-practice blueprints ⓘ |
Referenced by (1)
Full triples — surface form annotated when it differs from this entity's canonical label.