Posted On: Feb 22, 2021
Today, we are announcing AWS Control Tower Region Selection, a new capability that provides you the ability to efficiently manage the geographical footprint of your AWS Control Tower resources. You can now select the additional Regions you would like AWS Control Tower to govern; providing you with the capabilities to address compliance and regulatory concerns while balancing the costs associated with expanding into additional regions.
Region Selection is available when you set up a new landing zone or update your AWS Control Tower landing zone version. When you use Account Factory to create a new account or enroll a preexisting member account or you use Extend Governance to enroll accounts in a preexisting organizational unit, AWS Control Tower deploys its governance capabilities of centralized logging, monitoring and guardrails in your chosen Regions in the accounts. Choosing not to extend AWS Control Tower governance to a region will not inhibit your users’ ability to deploy AWS resources or workloads into those regions.
If you are currently using an older version of AWS Control Tower (v2.3 or older) and you want to extend its governance to additional supported Regions, you can go to the Landing zone settings page in your AWS Control Tower dashboard, and update your Region Selections. After updating your Region Selections, you must update your enrolled accounts to apply the new settings.