本文為英文版的機器翻譯版本,如內容有任何歧義或不一致之處,概以英文版為準。
Account Factory 的資源考量
使用帳戶 Factory 佈建帳戶時,會在帳戶中建立下列 AWS 資源。
| AWS 服務 | 資源類型 | 資源名稱 |
|---|---|---|
| AWS CloudFormation | 堆疊 |
StackSet-AWSControlTowerBP-BASELINE-CLOUDTRAIL-* StackSet-AWSControlTowerBP-BASELINE-CLOUDWATCH-* StackSet-AWSControlTowerBP-BASELINE-CONFIG-* StackSet-AWSControlTowerBP-BASELINE-ROLES-* StackSet-AWSControlTowerBP-BASELINE-SERVICE-ROLES-* |
| AWS CloudTrail | 追蹤 | aws-controltower-BaselineCloudTrail |
| Amazon CloudWatch | CloudWatch 活動規則 | aws-controltower-ConfigComplianceChangeEventRule |
| Amazon CloudWatch | CloudWatch 日誌 | aws-controltower/CloudTrailLogs /aws/lambda/aws-controltower-NotificationForwarder |
| AWS Identity and Access Management | 角色 | aws-controltower-AdministratorExecutionRole aws-controltower-CloudWatchLogsRole aws-controltower-ConfigRecorderRole aws-controltower-ForwardSnsNotificationRole aws-controltower-ReadOnlyExecutionRole AWSControlTowerExecution |
| AWS Identity and Access Management | 政策 | AWSControlTowerServiceRolePolicy |
| Amazon Simple Notification Service | 主題 | aws-controltower-SecurityNotifications |
| AWS Lambda | 應用程式 | StackSet-AWSControlTowerBP-BASELINE-CLOUDWATCH-* |
| AWS Lambda | 函數 | aws-controltower-NotificationForwarder |
