aws controltower create-landing-zone

From wikieduonline
Jump to navigation Jump to search

aws controltower create-landing-zone

Official example[edit]

{
   "governedRegions": ["us-west-2","us-west-1"],
   "organizationStructure": {
       "security": {
           "name": "CORE"
       },
       "sandbox": {
           "name": "Sandbox"
       }
   },
   "centralizedLogging": {
        "accountId": "222222222222",
        "configurations": {
            "loggingBucket": {
                "retentionDays": 60
            },
            "accessLoggingBucket": {
                "retentionDays": 60
            },
            "kmsKeyArn": "arn:aws:kms:us-west-1:123456789123:key/e84XXXXX-6bXX-49XX-9eXX-ecfXXXXXXXXX"
        },
        "enabled": true
   },
   "securityRoles": {
        "accountId": "333333333333"
   },
   "accessManagement": {
        "enabled": true
   }
}


aws organizations create-account
Terraform resource: aws_controltower_landing_zone

AWS Control Tower: aws controltower [ enable-control | list-enabled-controls | create-landing-zone ]

Advertising: