AWS Control Tower Activation

Thank you all for joining on this AWS Control Tower Activation Day, a day filled with great learnings where we talk about multi-account strategy and how AWS Control Tower can help you keep your environment safe and compliant at scale.

Conference room

The following will guide you in the distribution between the rooms during the day

Main room: https://chime.aws/7903603456

Room 1: https://chime.aws/5790846013

Room 2: https://chime.aws/5308114418

You can donwload the resourecs from here.

November 4, 2021 | 9:00AM - 4:00PM GMT Time

09:00AM - 09:20AM Kick-Off + Introductions

09:20AM - 09:50AM MultiAccount Discussion

09:50AM - 10:00AM Break

10:00AM - 11:00AM AWS Control Tower Overview

11:00AM - 11:30AM AWS Control Tower Demo

11:30AM - 11:40AM Break

11:40AM - 12:00PM Account Architecture Discussion

12:00PM - 12:15PM Life Cycle Events, Customization

12:15PM - 12:30PM Q&A (All)

12:30PM - 12:40PM Quiz

12:40PM - 12:50PM Labs: Introduction and Preparations (BYOA)

Trivia

Echo Dot 3er generation price to the winner!!!
https://kahoot.it/
Game pin:

Labs

https://controltower.aws-management.tools/

Useful resoruces:

Multi-account security guide
Centralized Network firewall
Control Tower Getting Started Guide
AWS Secure Account Setup
Getting Started: Follow Security Best Practices as You Configure Your AWS Resources
Building a Scalable and Secure Multi-VPC AWS Network Infrastructure
AWS Service Catalog Connector for ServiceNow
Automating AWS Security Hub Alerts wiht AWS Control Tower lifecycle events

Multi account strategy on AWS, which and when

https://aws.amazon.com/es/blogs/aws-spanish/preparese-para-escalar-en-la-nube-estrategia-de-multiples-cuentas/

Sandbox account automated management with serverless technology.

https://aws.amazon.com/es/blogs/aws-spanish/gestion-automatica-de-recursos-efimeros-para-pruebas-usando-tecnologia-sin-servidor/

AWS SSO with Azure AD:

Evolution of Single Sign-on - Integrate with Azure AD with automatic user provisioning:
https://aws.amazon.com/blogs/aws/the-next-evolution-in-aws-single-sign-on/

Centralized Logging

https://aws.amazon.com/solutions/implementations/centralized-logging

AWS SSO via CLI 2.0:

With AWS CLI 2.0 you can easily configure one or more of your AWS CLI named profiles (https://docs.aws.amazon.com/cli/latest/userguide/cli-configure-profiles.html) to use a role from AWS SSO
https://docs.aws.amazon.com/cli/latest/userguide/cli-configure-sso.html

Customization for Control Tower

https://aws.amazon.com/solutions/customizations-for-aws-control-tower/

Serverless Transit Network Orchestrator (STNO)

https://aws.amazon.com/solutions/implementations/serverless-transit-network-orchestrator/

AWS Control Tower on existing organizations:

https://www.youtube.com/watch?v=y6QLFn00A3U (https://www.youtube.com/watch?v=y6QLFn00A3U&feature=youtu.be)

AWS Config Conformance Packs:

https://docs.aws.amazon.com/config/latest/developerguide/aws-control-tower-detective-guardrails.html

Please fill in the following survey: here.