Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
ヤプリにおけるAWS Control Towerの活用 / Using AWS Contro...
Search
MotokiHabuchi
October 04, 2022
Technology
0
800
ヤプリにおけるAWS Control Towerの活用 / Using AWS ControlTower in Yappli
Yappli Tech Conference 2022の発表資料です。
MotokiHabuchi
October 04, 2022
Tweet
Share
More Decks by MotokiHabuchi
See All by MotokiHabuchi
コード化できていなかったヤプリをTerraform文化に変えていった話
motokihabuchi
2
740
Fargateでサクっとバッチ処理実行してみる/quick-batch-processing-in-Fargate.
motokihabuchi
0
63
re:Inventラスベガスはこうやって楽しむんや / lasvegas-tanoshimu2019
motokihabuchi
0
1.1k
re:Inventはこうやって楽しむんや / reinvent-wa-ko-yatte-tanoshimunnya
motokihabuchi
0
770
ヤプリの完全にモダンとは言いづらいけど、そこそこ攻めてるインフラ環境をもっと良くしたいエンジニアを募集しています。 / Yappli's infrastructure environment
motokihabuchi
0
2.1k
【AWS re:Invent報告会 by Yappli】で、結局re:Inventって何なの? / What is re: Invent?
motokihabuchi
0
1.3k
【YappliMeetup#3】Fargateでサクッと作る開発環境 / Make development environment with Fargate
motokihabuchi
0
430
【JAWS-UGさいたま】20170610_CFnでALBとWAFを連携
motokihabuchi
0
370
Other Decks in Technology
See All in Technology
現場の種を事業の芽にする - エンジニア主導のイノベーションを事業戦略に装着する方法 -
kzkmaeda
2
1.5k
スタートアップ1人目QAエンジニアが QAチームを立ち上げ、“個”からチーム、 そして“組織”に成長するまで / How to set up QA team at reiwatravel
mii3king
1
1.1k
CZII - CryoET Object Identification 参加振り返り・解法共有
tattaka
0
240
目の前の仕事と向き合うことで成長できる - 仕事とスキルを広げる / Every little bit counts
soudai
22
5.8k
技術的負債解消の取り組みと専門チームのお話 #技術的負債_Findy
bengo4com
1
1.2k
SA Night #2 FinatextのSA思想/SA Night #2 Finatext session
satoshiimai
1
100
MC906491 を見据えた Microsoft Entra Connect アップグレード対応
tamaiyutaro
1
480
TAMとre:Capセキュリティ編 〜拡張脅威検出デモを添えて〜
fujiihda
1
110
開発スピードは上がっている…品質はどうする? スピードと品質を両立させるためのプロダクト開発の進め方とは #DevSumi #DevSumiB / Agile And Quality
nihonbuson
1
1.3k
Datadog APM におけるトレース収集の流れ及び Retention Filters のはなし / datadog-apm-trace-retention-filters
k6s4i53rx
0
320
これからSREになる人と、これからもSREをやっていく人へ
masayoshi
6
4.1k
Developers Summit 2025 浅野卓也(13-B-7 LegalOn Technologies)
legalontechnologies
PRO
0
150
Featured
See All Featured
KATA
mclloyd
29
14k
ReactJS: Keep Simple. Everything can be a component!
pedronauck
666
120k
Visualizing Your Data: Incorporating Mongo into Loggly Infrastructure
mongodb
44
9.4k
Faster Mobile Websites
deanohume
306
31k
Docker and Python
trallard
44
3.3k
Code Review Best Practice
trishagee
66
17k
The Pragmatic Product Professional
lauravandoore
32
6.4k
A designer walks into a library…
pauljervisheath
205
24k
Java REST API Framework Comparison - PWX 2021
mraible
28
8.4k
Measuring & Analyzing Core Web Vitals
bluesmoon
6
240
Designing Experiences People Love
moore
139
23k
10 Git Anti Patterns You Should be Aware of
lemiorhan
PRO
656
59k
Transcript
AWS Control Tower SESSION 04
@modokkin 2018 Youtube 🙇 https://www.youtube.com/c/timesyappliradio
INDEX 01 02 03 04 05 AWS AWS Control Tower
AWS Control Tower AWS Control Tower
01 AWS
AWS CloudTrail AWS AWS Con fi g AWS AWS Organizations
AWS IAM Identity Center (AWS Single Sign-On )
AWS Production Staging Production Account Develop AWS CloudTrail AWS Con
fi g
Production Staging Production Account Develop Develop Account AWS CloudTrail AWS
Con fi g AWS CloudTrail AWS Con fi g
Production Staging Production Corporate AWS CloudTrail AWS Con fi g
Develop Corporate Develop AWS CloudTrail AWS Con fi g AWS CloudTrail AWS Con fi g
Production Staging Production etc. Develop Develop Corporate Corporate
AWS Organizations Workloads OU Production OU SCP Staging OU Develop
OU SCP SCP Security OU SCP SCP Exceptions OU SCP
AWS IAM Identity Center (AWS Single Sign-On ) IAM User
IAM AWS IAM Identity Center okta
AWS IAM Identity Center IAM AWS Organizations ( OU SCP
) SCP( ) 1 AWS Config
AWS
02 AWS Control Tower
AWS : https://aws.amazon.com/jp/controltower/
Guardrails( ) AWS Control Tower Amazon S 3
SSH DB
Landing Zone ( ) • AWS ( ) AWS Control
Tower H
AWS CloudTrail AWS Con fi g AWS Organizations AWS ControlTower
03 AWS Control Tower
1 . AWS 2 . 3. AWS 4 . AWS
Control Tower 5 . 6 . Control Tower Workshops https://controltower.aws-management.tools/ja/
( ) AWS Control Tower 🤗
AWS Control Tower
04 AWS Control Tower
• https://docs.aws.amazon.com/ja_jp/controltower/latest/userguide/accounts.html AWS Organizations
AWS CloudTrail Amazon S3 🆕 KMS
None
築
05
AWS IAM MFA Amazon S3
Slack AWS Chat Bot Amazon CloudWatch
Okta 築 • AWS Control Tower AWS IAM Identity Center(AWS
SSO) • Okta Okta Okta AWS IAM Identity Center 築
None
AWS Control Tower AWS AWS Control Tower
AWS
None
AWS Control Tower Yappli Tech Blog https://tech.yappli.io/entry/ yapplitechconf2022-sre
🙇
motokihabuchi
kzkmaeda
mii3king
tattaka
soudai
bengo4com
satoshiimai
tamaiyutaro
fujiihda
nihonbuson
k6s4i53rx
masayoshi
legalontechnologies
mclloyd
pedronauck
mongodb
deanohume
trallard
trishagee
lauravandoore
pauljervisheath
mraible
bluesmoon
moore
lemiorhan
