Step 1. Launch the stack - Landing Zone Accelerator on AWS

Step 1. Launch the stack

This automated AWS CloudFormation template deploys the Landing Zone Accelerator on AWS in the AWS Cloud. You must complete the applicable steps in Prerequisites before launching the stack.

  1. Sign in to the AWS Management Console of your organization’s management account and select the button to launch the AWSAccelerator-InstallerStack AWS CloudFormation template.

    Blue oval button with white text reading "Launch solution".

  2. The template launches in the US East (N. Virginia) Region by default. To launch the solution in a different AWS Region, use the Region selector in the console navigation bar.

    Note

    This solution recommends using the AWS Control Tower service, which isn't currently available in all AWS Regions. We recommend launching this solution in an AWS Region where AWS Control Tower is available. For the most current availability by Region, refer to the AWS Regional Services List.

  3. On the Create stack page, verify that the correct template URL is in the Amazon S3 URL text box and choose Next.

  4. On the Specify stack details page, assign a name to your solution stack. We recommend you name your stack AWSAccelerator-InstallerStack to match the naming convention used by additional stacks that will be created by the Landing Zone Accelerator on AWS. For information about naming character limitations, refer to IAM and STS quotas in the AWS Identity and Access Management User Guide.

  5. Under Parameters, review the parameters for this solution template and modify them as necessary. This solution uses the following default values.

    Parameter Default Description
    Source

    github

    		 Specify the git host.
    Repository Owner

    awslabs

    		 The owner of the git repository hosting the solution code.
    Repository Name

    landing-zone-accelerator-on-aws

    		 The name of the git repository hosting the solution code.
    Branch Name

    <requires input>

    The name of the git branch to use for installation.

    Note

    The Branch Name parameter defaults to the latest release branch name. To determine the branch name, navigate to the Landing Zone Accelerator on AWS GitHub branches page and choose the release branch you want to deploy. Release branch names align with the semantic versioning of our GitHub releases. New release branches will be available as the open-source project is updated with new features.

    Enable Approval Stage

    Yes

    Select Yes to add a manual approval stage to accelerator pipeline.
    Manual Approval Stage notification email list

    optional input

    		 Provide comma separated list of email IDs to receive manual approval stage notification email.
    Management Account Email

    <requires input>

    The management (primary) account email.

    Note

    Use a unique email address.

    LogArchive Account Email

    <requires input>

    The log archive account email.

    Note

    Use a unique email address.

    Audit Account Email

    <requires input>

    The security audit account (also referred to as the audit account).

    Note

    Use a unique email address.

    Control Tower Environment

    Yes

    Select Yes if you want to deploy to an AWS Control Tower environment. Select No if you’re not using AWS Control Tower.
    Accelerator Resource name prefix

    AWSAccelerator

    The prefix value for accelerator-deployed resources. Leave the default value if you’re using the solution-defined resource name prefix.

    Important

    Updating this value after initial installation will cause stack failure. Non-default value cannot start with keywords aws or ssm (case insensitive). Trailing dashes (for example, input-) in a non-default value will be ignored.
    Use Existing Config Repository

    No

    Select Yes to deploy the solution with an existing configuration repository. Leave the default value if you’re using the solution-deployed repository.

    Note

    Updating this value after initial installation may cause adverse effects such as unexpected failures and resource replacements.
    Existing Config Repository Name

    optional input

    The name of an existing CodeCommit repository hosting the solution configuration. When the Use Existing Config Repository parameter is set to Yes, the value for this parameter must be a valid name of an existing CodeCommit repository that holds the solution configuration.

    Note

    When the Use Existing Config Repository parameter is set to Yes and this parameter is empty, then the Installer stack validation will fail, which will cause stack deployment failure.
    Existing Config Repository Branch Name

    optional input

    The name of an existing CodeCommit repository to pull the solution configuration from. When the Use Existing Config Repository parameter is set to Yes, the value for this parameter must be a valid name of an existing CodeCommit repository that holds the solution configuration.

    Note

    When the Use Existing Config Repository parameter is set to Yes and this parameter is empty, then the Installer stack validation will fail, which will cause stack deployment failure.
    Enable Diagnostics Pack

    Yes

    Select Yes to deploy the diagnostics pack tool. For more information about the diagnostics pack tool deployed by the solution, refer to Diagnostics pack in the Troubleshooting section.
    Configuration Repository Location

    <requires input>

    Determines where to store the LZA configuration files used to customize your landing zone. In previous versions of the solution, files were stored in CodeCommit by default.

    Important

    Updating this value after initial installation will cause stack failures.

  6. Choose Next.

  7. On the Configure stack options page, choose Next.

  8. On the Review and create page, review and confirm the settings. Select the box acknowledging that the template might create IAM resources.

  9. Choose Submit to deploy the stack.

    You can view the status of the stack in the AWS CloudFormation console in the Status column. You should receive a CREATE_COMPLETE status in approximately eight minutes.