A)–> Core Organizational Unit with 3 accounts:
1) Master Account
2) Log Archive Account
3) Audit Account
B)–> Within each account, an initial security baseline that includes:
1) AWS CloudTrail
2) AWS Config
3) AWS Config Rules enabled for monitoring
4) AWS IAM roles
5) An initial Amazon VPC network
C)–> An Account Factory – essentially, an AWS Service Catalog product that allows you to automatically create new “child” accounts to the existing Organization that maintain all predefined security baselines
D)–> The Control Tower Dashboard – limited UI to the base Control Tower constructs. Only components deployed and managed by Control Tower are seen in the dashboard.
- This topic has 1 reply, 1 voice, and was last updated 1 month, 1 week ago.
You must be logged in to reply to this topic.