AWS Control Tower releases 2 new descriptive control APIs
AWS Control Tower customers can now programmatically get descriptions for managed controls. These APIs enable automation of AWS Control Tower’s library of managed controls improving ease of use for control deployment. With this release customers can extend AWS Control Tower governance into regions where some of their enabled controls are not available. Customers can also enable a control in additional Regions, even though the control is not supported in all of their governed Regions. AWS Control Tower now supports the below APIs:
- ListControls – This API call returns a paginated list of all available controls in AWS Control Tower controls library.
- GetControl – This API call returns details of an enabled control which includes target identifier, control summary, target regions, and drift status of the control.
AWS Control Tower offers the easiest way to set up and govern a secure, multi-account AWS environment based on AWS best practices. You can automate the creation of new AWS accounts using AWS Control Tower’s account factory and enable governance features at scale such as controls, centralized logging, and monitoring. To learn more, visit the AWS Control Tower homepage. For more information about the AWS Regions where AWS Control Tower is available, see the AWS Region table. Please see the API reference for a full list of AWS Control Tower APIs.