Posted On: Jul 7, 2020
Starting today, AWS Marketplace offers integrated third-party software solutions for AWS Control Tower. Built by independent software vendors, these solutions help solve infrastructure and operational use cases such as security for a multi-account environment, with tools including centralized networking, operational intelligence, and Security and Information Event Management (SIEM).
As customers start their journey on AWS, they need to establish a foundation to create new environments that adhere to identity, networking, and security requirements. AWS Control Tower provides a framework to set up and extend a well-architected, multi-account AWS environment based on security and compliance best practices. As part of this framework, AWS Control Tower enables AWS CloudTrail and AWS Config and centralizes logging to an Amazon S3 bucket located in a Log Archive account. AWS Control Tower also pre-configures Amazon Simple Notification Service (Amazon SNS) and provides federated access to accounts using AWS Single Sign-On (AWS SSO). Finally, AWS Control Tower enables guardrails to protect resources deployed by AWS Control Tower and detect compliance errors and supports lifecycle events, allowing you to configure and customize automation upon account creation.
Each AWS Marketplace software solution for AWS Control Tower leverages AWS Control Tower features such as centralized logging and life cycle events. These software solutions include a step-by-step guide to setup, architectural guidance and reference code for a multi-account environment built using AWS Control Tower. Customers can use the guidance to automate the integration of third-party software solutions in your AWS accounts and environments.
To learn more, see AWS Marketplace solutions for AWS Control Tower. To setup your landing zone with AWS Control Tower, see Getting Started with AWS Control Tower - AWS Control Tower. See our User Guide for information on how to Enable Control Tower in Existing Organizations and how to Enroll an Existing AWS Account in AWS Control Tower.