Class ControlTowerLandingZoneConfig

GlobalConfig / ControlTowerConfig / ControlTowerLandingZoneConfig

Description

AWS Control Tower Landing Zone configuration

Remarks

This allows you to manage AWS Control Tower Landing Zone configuration.

Please use the following configuration to configure AWS Control Tower Landing Zone.

Example

landingZone:
  version: '3.3'
  logging:
    loggingBucketRetentionDays: 365
    accessLoggingBucketRetentionDays: 3650
    organizationTrail: true
  security:
    enableIdentityCenterAccess: true

Implements

Properties

logging security version

Properties

Readonlylogging

logging: ControlTowerLandingZoneLoggingConfig

AWS Control Tower Landing Zone logging configuration

See

ControlTowerLandingZoneLoggingConfig for more information.

Readonlysecurity

security: ControlTowerLandingZoneSecurityConfig

AWS Control Tower Landing Zone security configuration

See

ControlTowerLandingZoneSecurityConfig for more information.

Readonlyversion

version: string

The landing zone version, for example, 3.3.

Remarks

Most AWS Control Tower Landing Zone operation needs the version to latest available version. The AWS Control Tower Landing Zone will be updated or reset when it drifts or when any configuration changes have been made in global-config. When the value of this property is set to the latest available version, AWS Control Tower Landing Zone can be updated or reset. The solution will fail if this property version is not set to the latest available version. If you wish to update or reset the AWS Control Tower Landing Zone, you will need to update this property to match the latest available version.

Settings

Member Visibility

On This Page

Properties