# AWS Control Tower Activation Thank you all for joining on this AWS Control Tower Activation Day, a day filled with great learnings where we talk about multi-account strategy and how AWS Control Tower can help you keep your environment safe and compliant at scale. ## Conference room The following will guide you in the distribution between the rooms during the day Main room: https://chime.aws/7903603456 Room 1: https://chime.aws/5790846013 Room 2: https://chime.aws/5308114418 You can donwload the resourecs from [here](https://sandbox-files-to-share.s3.amazonaws.com/ISV+AD/Control+Tower+ES+decks.zip). ## November 4, 2021 | 9:00AM - 4:00PM GMT Time 09:00AM - 09:20AM Kick-Off + Introductions 09:20AM - 09:50AM MultiAccount Discussion 09:50AM - 10:00AM Break 10:00AM - 11:00AM AWS Control Tower Overview 11:00AM - 11:30AM AWS Control Tower Demo 11:30AM - 11:40AM Break 11:40AM - 12:00PM Account Architecture Discussion 12:00PM - 12:15PM Life Cycle Events, Customization 12:15PM - 12:30PM Q&A (All) 12:30PM - 12:40PM Quiz 12:40PM - 12:50PM Labs: Introduction and Preparations (BYOA) ## Trivia Echo Dot 3er generation price to the winner!!! https://kahoot.it/ Game pin: ## Labs https://controltower.aws-management.tools/ ## Useful resoruces: [Multi-account security guide](https://docs.aws.amazon.com/prescriptive-guidance/latest/security-reference-architecture/architecture.html) [Centralized Network firewall](https://aws.amazon.com/pt/blogs/mt/scale-multi-account-architecture-aws-network-firewall-and-aws-control-tower/) [Control Tower Getting Started Guide](https://docs.aws.amazon.com/controltower/latest/userguide/getting-started-with-control-tower.html) [AWS Secure Account Setup](https://aws.amazon.com/answers/security/aws-secure-account-setup/) [Getting Started: Follow Security Best Practices as You Configure Your AWS Resources](https://aws.amazon.com/blogs/security/getting-started-follow-security-best-practices-as-you-configure-your-aws-resources/) [Building a Scalable and Secure Multi-VPC AWS Network Infrastructure](https://d1.awsstatic.com/whitepapers/building-a-scalable-and-secure-multi-vpc-aws-network-infrastructure.pdf) [AWS Service Catalog Connector for ServiceNow](https://aws.amazon.com/blogs/aws/new-aws-service-catalog-connector-for-servicenow/) [Automating AWS Security Hub Alerts wiht AWS Control Tower lifecycle events](https://aws.amazon.com/blogs/mt/automating-aws-security-hub-alerts-with-aws-control-tower-lifecycle-events/) ### Multi account strategy on AWS, which and when https://aws.amazon.com/es/blogs/aws-spanish/preparese-para-escalar-en-la-nube-estrategia-de-multiples-cuentas/  ### Sandbox account automated management with serverless technology. https://aws.amazon.com/es/blogs/aws-spanish/gestion-automatica-de-recursos-efimeros-para-pruebas-usando-tecnologia-sin-servidor/  ### AWS SSO with Azure AD: Evolution of Single Sign-on - Integrate with Azure AD with automatic user provisioning: https://aws.amazon.com/blogs/aws/the-next-evolution-in-aws-single-sign-on/ ### Centralized Logging https://aws.amazon.com/solutions/implementations/centralized-logging  ### AWS SSO via CLI 2.0: With AWS CLI 2.0 you can easily configure one or more of your AWS CLI named profiles (https://docs.aws.amazon.com/cli/latest/userguide/cli-configure-profiles.html) to use a role from AWS SSO https://docs.aws.amazon.com/cli/latest/userguide/cli-configure-sso.html ### Customization for Control Tower https://aws.amazon.com/solutions/customizations-for-aws-control-tower/  ### Serverless Transit Network Orchestrator (STNO) https://aws.amazon.com/solutions/implementations/serverless-transit-network-orchestrator/  ### AWS Control Tower on existing organizations: https://www.youtube.com/watch?v=y6QLFn00A3U (https://www.youtube.com/watch?v=y6QLFn00A3U&feature=youtu.be) ### AWS Config Conformance Packs: https://docs.aws.amazon.com/config/latest/developerguide/aws-control-tower-detective-guardrails.html  # Please fill in the following survey: [here](https://survey.immersionday.com/QNeADLi7g).