AWS Control Tower | Move Existing AWS Account to Control Tower | Concepts | Demo | @Cloud4DevOps

Hi Shashank your tutorials are great learning for me as I am working in aws still I watch your tutorial where I got more clarity.please upload lecture on AWS service catalog as this is also very important on an organization point of view.

suuVi_Vlog

Your explanations are good however, as some who is busy such a migration I think to make your lecture comprehensive, there things like AWSContolTower Execuction role, Billing Information when your leaving the existing organisation, ControlTower service catalog ...these are prereqs that I hoped to get a better understanding how possibly we can do a bulk migration since each account needs to have billing information before you can sucessfully migrate into the nee CT environment.

takuramutasa

Hi Shashank, have you have missed one important point that enables the Contro Tower to perform the activities (implement guardrails) on all member accounts. This is to create an IAM role "AWSControlTowerExecution" in the member account and give the "Administrator" policy. In trust relationship, you have to enable the trust with Control Tower account.
Actually I am new to Control Tower and would like to add my client's existing account to the control tower. So I read in documentation that I have to create that one role in member account that I want to add.

mohsinnisar

Currently i am already having an account(ap-south-1) running with production resources but there is no control tower structure or organizations defined. Now, i am planning to setup new organizations using Control Tower in same region. So will this impact my existing resources as recreation of vpc's or applying of gurdrails etc? Or how do i setup in this scenario?

nagasurendranath