Overview
- Provision Control Tower accounts via Terraform
- Compatible with Terraform Cloud, Enterprise, and open source
- GitOps model
High-Level Components
- AFT pipeline—account vending and customization
- AFT feature options—optional features, e.g.
- Cloud trail data events—S3 and Lambda
- Automatic Enterprise Support enrolment
- Deletion of default VPCs for all regions
- AFT customizations—customize accounts with public/private modules, e.g.
- Additional Controls
- Default firewalls
- Need to provision AFT management account in Control Tower first