As traduções são geradas por tradução automática. Em caso de conflito entre o conteúdo da tradução e da versão original em inglês, a versão em inglês prevalecerá.
Esquemas da zona de pouso
Uma landing zone é um AWS recurso criado por meio de esquemas. Cada versão da zona de pouso do AWS Control Tower tem um esquema exclusivo.
Os esquemas das zonas de pouso do AWS Control Tower, versão 3.1 e mais recentes, são publicados nesta seção de referência para ajudar você a escolher uma versão compatível.
nota
Um problema conhecido relacionado ao registro em log de acesso desnecessário está presente na zona de pouso versão 3.0. O problema foi resolvido na zona de pouso versão 3.1. Consulte mais informações sobre essas alterações em Versão 3.1 da zona de pouso do AWS Control Tower.
Esquema da zona de pouso 3.1
{ "type": "object", "required": [ "centralizedLogging", "organizationStructure", "securityRoles" ], "properties": { "accessManagement": { "$ref": "#/definitions/AccessManagement" }, "backup": { "$ref": "#/definitions/Backup" }, "centralizedLogging": { "$ref": "#/definitions/CentralizedLogging" }, "governedRegions": { "type": "array", "items": { "type": "string", "maxLength": 24, "minLength": 1, "pattern": "^[a-z]{2}-[a-z\\-]*-[0-9]{1}$", "additionalProperties": false }, "additionalProperties": false }, "organizationStructure": { "$ref": "#/definitions/OrganizationStructure" }, "securityRoles": { "$ref": "#/definitions/SecurityRoles" } }, "additionalProperties": false, "definitions": { "AccessManagement": { "type": "object", "required": [ "enabled" ], "properties": { "enabled": { "type": "boolean", "additionalProperties": false, "default": true } }, "additionalProperties": false }, "Backup": { "type": "object", "properties": { "configurations": { "$ref": "#/definitions/BackupConfigurations" }, "enabled": { "type": "boolean", "additionalProperties": false, "default": false } }, "additionalProperties": false, "if": { "properties": { "enabled": { "const": true } } }, "then": { "required": [ "configurations" ] } }, "BackupAdminConfigurations": { "type": "object", "required": [ "accountId" ], "properties": { "accountId": { "type": "string", "maxLength": 12, "minLength": 12, "pattern": "^\\d{12}$", "additionalProperties": false } }, "additionalProperties": false }, "BackupConfigurations": { "type": "object", "required": [ "backupAdmin", "centralBackup", "kmsKeyArn" ], "properties": { "backupAdmin": { "$ref": "#/definitions/BackupAdminConfigurations" }, "centralBackup": { "$ref": "#/definitions/CentralBackupConfigurations" }, "kmsKeyArn": { "type": "string", "maxLength": 2048, "minLength": 1, "additionalProperties": false } }, "additionalProperties": false }, "CentralBackupConfigurations": { "type": "object", "required": [ "accountId" ], "properties": { "accountId": { "type": "string", "maxLength": 12, "minLength": 12, "pattern": "^\\d{12}$", "additionalProperties": false } }, "additionalProperties": false }, "CentralizedLogging": { "type": "object", "required": [ "accountId" ], "properties": { "accountId": { "type": "string", "maxLength": 12, "minLength": 12, "pattern": "^\\d{12}$", "additionalProperties": false }, "configurations": { "$ref": "#/definitions/LoggingConfigurations" }, "enabled": { "type": "boolean", "additionalProperties": false, "default": true } }, "additionalProperties": false }, "LoggingConfigurations": { "type": "object", "properties": { "accessLoggingBucket": { "$ref": "#/definitions/S3BucketConfiguration" }, "kmsKeyArn": { "type": "string", "maxLength": 2048, "minLength": 1, "additionalProperties": false }, "loggingBucket": { "$ref": "#/definitions/S3BucketConfiguration" } }, "additionalProperties": false }, "OrganizationalUnit": { "type": "object", "required": [ "name" ], "properties": { "name": { "type": "string", "maxLength": 120, "minLength": 1, "pattern": "^[\\s\\S]*$", "additionalProperties": false } }, "additionalProperties": false }, "OrganizationStructure": { "type": "object", "required": [ "security" ], "properties": { "sandbox": { "$ref": "#/definitions/OrganizationalUnit" }, "security": { "$ref": "#/definitions/OrganizationalUnit" } }, "additionalProperties": false }, "S3BucketConfiguration": { "type": "object", "properties": { "retentionDays": { "type": "number", "minimum": 1, "additionalProperties": false } }, "additionalProperties": false }, "SecurityRoles": { "type": "object", "required": [ "accountId" ], "properties": { "accountId": { "type": "string", "maxLength": 12, "minLength": 12, "pattern": "^\\d{12}$", "additionalProperties": false } }, "additionalProperties": false } } }
Esquema da zona de pouso 3.2
{ "type": "object", "required": [ "centralizedLogging", "organizationStructure", "securityRoles" ], "properties": { "accessManagement": { "$ref": "#/definitions/AccessManagement" }, "backup": { "$ref": "#/definitions/Backup" }, "centralizedLogging": { "$ref": "#/definitions/CentralizedLogging" }, "governedRegions": { "type": "array", "items": { "type": "string", "maxLength": 24, "minLength": 1, "pattern": "^[a-z]{2}-[a-z\\-]*-[0-9]{1}$", "additionalProperties": false }, "additionalProperties": false }, "organizationStructure": { "$ref": "#/definitions/OrganizationStructure" }, "securityRoles": { "$ref": "#/definitions/SecurityRoles" } }, "additionalProperties": false, "definitions": { "AccessManagement": { "type": "object", "required": [ "enabled" ], "properties": { "enabled": { "type": "boolean", "additionalProperties": false, "default": true } }, "additionalProperties": false }, "Backup": { "type": "object", "properties": { "configurations": { "$ref": "#/definitions/BackupConfigurations" }, "enabled": { "type": "boolean", "additionalProperties": false, "default": false } }, "additionalProperties": false, "if": { "properties": { "enabled": { "const": true } } }, "then": { "required": [ "configurations" ] } }, "BackupAdminConfigurations": { "type": "object", "required": [ "accountId" ], "properties": { "accountId": { "type": "string", "maxLength": 12, "minLength": 12, "pattern": "^\\d{12}$", "additionalProperties": false } }, "additionalProperties": false }, "BackupConfigurations": { "type": "object", "required": [ "backupAdmin", "centralBackup", "kmsKeyArn" ], "properties": { "backupAdmin": { "$ref": "#/definitions/BackupAdminConfigurations" }, "centralBackup": { "$ref": "#/definitions/CentralBackupConfigurations" }, "kmsKeyArn": { "type": "string", "maxLength": 2048, "minLength": 1, "additionalProperties": false } }, "additionalProperties": false }, "CentralBackupConfigurations": { "type": "object", "required": [ "accountId" ], "properties": { "accountId": { "type": "string", "maxLength": 12, "minLength": 12, "pattern": "^\\d{12}$", "additionalProperties": false } }, "additionalProperties": false }, "CentralizedLogging": { "type": "object", "required": [ "accountId" ], "properties": { "accountId": { "type": "string", "maxLength": 12, "minLength": 12, "pattern": "^\\d{12}$", "additionalProperties": false }, "configurations": { "$ref": "#/definitions/LoggingConfigurations" }, "enabled": { "type": "boolean", "additionalProperties": false, "default": true } }, "additionalProperties": false }, "LoggingConfigurations": { "type": "object", "properties": { "accessLoggingBucket": { "$ref": "#/definitions/S3BucketConfiguration" }, "kmsKeyArn": { "type": "string", "maxLength": 2048, "minLength": 1, "additionalProperties": false }, "loggingBucket": { "$ref": "#/definitions/S3BucketConfiguration" } }, "additionalProperties": false }, "OrganizationalUnit": { "type": "object", "required": [ "name" ], "properties": { "name": { "type": "string", "maxLength": 120, "minLength": 1, "pattern": "^[\\s\\S]*$", "additionalProperties": false } }, "additionalProperties": false }, "OrganizationStructure": { "type": "object", "required": [ "security" ], "properties": { "sandbox": { "$ref": "#/definitions/OrganizationalUnit" }, "security": { "$ref": "#/definitions/OrganizationalUnit" } }, "additionalProperties": false }, "S3BucketConfiguration": { "type": "object", "properties": { "retentionDays": { "type": "number", "minimum": 1, "additionalProperties": false } }, "additionalProperties": false }, "SecurityRoles": { "type": "object", "required": [ "accountId" ], "properties": { "accountId": { "type": "string", "maxLength": 12, "minLength": 12, "pattern": "^\\d{12}$", "additionalProperties": false } }, "additionalProperties": false } } }
Esquema da zona de pouso 3.3
{ "type": "object", "required": [ "centralizedLogging", "organizationStructure", "securityRoles" ], "properties": { "accessManagement": { "$ref": "#/definitions/AccessManagement" }, "backup": { "$ref": "#/definitions/Backup" }, "centralizedLogging": { "$ref": "#/definitions/CentralizedLogging" }, "governedRegions": { "type": "array", "items": { "type": "string", "maxLength": 24, "minLength": 1, "pattern": "^[a-z]{2}-[a-z\\-]*-[0-9]{1}$", "additionalProperties": false }, "additionalProperties": false }, "organizationStructure": { "$ref": "#/definitions/OrganizationStructure" }, "securityRoles": { "$ref": "#/definitions/SecurityRoles" } }, "additionalProperties": false, "definitions": { "AccessManagement": { "type": "object", "required": [ "enabled" ], "properties": { "enabled": { "type": "boolean", "additionalProperties": false, "default": true } }, "additionalProperties": false }, "Backup": { "type": "object", "properties": { "configurations": { "$ref": "#/definitions/BackupConfigurations" }, "enabled": { "type": "boolean", "additionalProperties": false, "default": false } }, "additionalProperties": false, "if": { "properties": { "enabled": { "const": true } } }, "then": { "required": [ "configurations" ] } }, "BackupAdminConfigurations": { "type": "object", "required": [ "accountId" ], "properties": { "accountId": { "type": "string", "maxLength": 12, "minLength": 12, "pattern": "^\\d{12}$", "additionalProperties": false } }, "additionalProperties": false }, "BackupConfigurations": { "type": "object", "required": [ "backupAdmin", "centralBackup", "kmsKeyArn" ], "properties": { "backupAdmin": { "$ref": "#/definitions/BackupAdminConfigurations" }, "centralBackup": { "$ref": "#/definitions/CentralBackupConfigurations" }, "kmsKeyArn": { "type": "string", "maxLength": 2048, "minLength": 1, "additionalProperties": false } }, "additionalProperties": false }, "CentralBackupConfigurations": { "type": "object", "required": [ "accountId" ], "properties": { "accountId": { "type": "string", "maxLength": 12, "minLength": 12, "pattern": "^\\d{12}$", "additionalProperties": false } }, "additionalProperties": false }, "CentralizedLogging": { "type": "object", "required": [ "accountId" ], "properties": { "accountId": { "type": "string", "maxLength": 12, "minLength": 12, "pattern": "^\\d{12}$", "additionalProperties": false }, "configurations": { "$ref": "#/definitions/LoggingConfigurations" }, "enabled": { "type": "boolean", "additionalProperties": false, "default": true } }, "additionalProperties": false }, "LoggingConfigurations": { "type": "object", "properties": { "accessLoggingBucket": { "$ref": "#/definitions/S3BucketConfiguration" }, "kmsKeyArn": { "type": "string", "maxLength": 2048, "minLength": 1, "additionalProperties": false }, "loggingBucket": { "$ref": "#/definitions/S3BucketConfiguration" } }, "additionalProperties": false }, "OrganizationalUnit": { "type": "object", "required": [ "name" ], "properties": { "name": { "type": "string", "maxLength": 120, "minLength": 1, "pattern": "^[\\s\\S]*$", "additionalProperties": false } }, "additionalProperties": false }, "OrganizationStructure": { "type": "object", "required": [ "security" ], "properties": { "sandbox": { "$ref": "#/definitions/OrganizationalUnit" }, "security": { "$ref": "#/definitions/OrganizationalUnit" } }, "additionalProperties": false }, "S3BucketConfiguration": { "type": "object", "properties": { "retentionDays": { "type": "number", "minimum": 1, "additionalProperties": false } }, "additionalProperties": false }, "SecurityRoles": { "type": "object", "required": [ "accountId" ], "properties": { "accountId": { "type": "string", "maxLength": 12, "minLength": 12, "pattern": "^\\d{12}$", "additionalProperties": false } }, "additionalProperties": false } } }
