Account Factory에 대한 리소스 고려 사항
Account Factory로 계정이 프로비저닝되면 해당 계정 내에 다음과 같은 AWS 리소스가 생성됩니다.
| AWS 서비스 | 리소스 유형 | 리소스 이름 |
|---|---|---|
| AWS CloudFormation | 스택 |
StackSet-AWSControlTowerBP-BASELINE-CLOUDTRAIL-* StackSet-AWSControlTowerBP-BASELINE-CLOUDWATCH-* StackSet-AWSControlTowerBP-BASELINE-CONFIG-* StackSet-AWSControlTowerBP-BASELINE-ROLES-* StackSet-AWSControlTowerBP-BASELINE-SERVICE-ROLES-* |
| AWS CloudTrail | 추적 | aws-controltower-BaselineCloudTrail |
| Amazon CloudWatch | CloudWatch Events 규칙 | aws-controltower-ConfigComplianceChangeEventRule |
| Amazon CloudWatch | CloudWatch Logs | aws-controltower/CloudTrailLogs /aws/lambda/aws-controltower-NotificationForwarder |
| AWS Identity and Access Management | 역할 | aws-controltower-AdministratorExecutionRole aws-controltower-CloudWatchLogsRole aws-controltower-ConfigRecorderRole aws-controltower-ForwardSnsNotificationRole aws-controltower-ReadOnlyExecutionRole AWSControlTowerExecution |
| AWS Identity and Access Management | 정책 | AWSControlTowerServiceRolePolicy |
| Amazon Simple Notification Service | 주제 | aws-controltower-SecurityNotifications |
| AWS Lambda | 애플리케이션 | StackSet-AWSControlTowerBP-BASELINE-CLOUDWATCH-* |
| AWS Lambda | 함수 | aws-controltower-NotificationForwarder |
