Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
ヤプリにおけるAWS Control Towerの活用 / Using AWS Contro...
Search
MotokiHabuchi
October 04, 2022
Technology
0
1k
ヤプリにおけるAWS Control Towerの活用 / Using AWS ControlTower in Yappli
Yappli Tech Conference 2022の発表資料です。
MotokiHabuchi
October 04, 2022
Tweet
Share
More Decks by MotokiHabuchi
See All by MotokiHabuchi
開発コンテナを活用し、並列で同じサービスを複数パターン構築 / Leveraging Development Containers for Parallel Deployment of Service Patterns
motokihabuchi
0
220
コード化できていなかったヤプリをTerraform文化に変えていった話
motokihabuchi
2
920
Fargateでサクっとバッチ処理実行してみる/quick-batch-processing-in-Fargate.
motokihabuchi
0
73
re:Inventラスベガスはこうやって楽しむんや / lasvegas-tanoshimu2019
motokihabuchi
0
1.2k
re:Inventはこうやって楽しむんや / reinvent-wa-ko-yatte-tanoshimunnya
motokihabuchi
0
930
ヤプリの完全にモダンとは言いづらいけど、そこそこ攻めてるインフラ環境をもっと良くしたいエンジニアを募集しています。 / Yappli's infrastructure environment
motokihabuchi
0
2.4k
【AWS re:Invent報告会 by Yappli】で、結局re:Inventって何なの? / What is re: Invent?
motokihabuchi
0
1.6k
【YappliMeetup#3】Fargateでサクッと作る開発環境 / Make development environment with Fargate
motokihabuchi
0
450
【JAWS-UGさいたま】20170610_CFnでALBとWAFを連携
motokihabuchi
0
400
Other Decks in Technology
See All in Technology
20250913_JAWS_sysad_kobe
takuyay0ne
2
220
Automating Web Accessibility Testing with AI Agents
maminami373
0
1.3k
現場で効くClaude Code ─ 最新動向と企業導入
takaakikakei
1
250
「どこから読む?」コードとカルチャーに最速で馴染むための実践ガイド
zozotech
PRO
0
460
TS-S205_昨年対比2倍以上の機能追加を実現するデータ基盤プロジェクトでのAI活用について
kaz3284
1
170
はじめてのOSS開発からみえたGo言語の強み
shibukazu
1
180
2つのフロントエンドと状態管理
mixi_engineers
PRO
3
110
まずはマネコンでちゃちゃっと作ってから、それをCDKにしてみよか。
yamada_r
2
110
S3アクセス制御の設計ポイント
tommy0124
3
200
Snowflake Intelligenceにはこうやって立ち向かう!クラシルが考えるAI Readyなデータ基盤と活用のためのDataOps
gappy50
0
250
これでもう迷わない!Jetpack Composeの書き方実践ガイド
zozotech
PRO
0
860
roppongirb_20250911
igaiga
1
240
Featured
See All Featured
The Language of Interfaces
destraynor
161
25k
Dealing with People You Can't Stand - Big Design 2015
cassininazir
367
27k
JavaScript: Past, Present, and Future - NDC Porto 2020
reverentgeek
51
5.6k
The Art of Delivering Value - GDevCon NA Keynote
reverentgeek
15
1.7k
Product Roadmaps are Hard
iamctodd
PRO
54
11k
Creating an realtime collaboration tool: Agile Flush - .NET Oxford
marcduiker
31
2.2k
Gamification - CAS2011
davidbonilla
81
5.4k
Become a Pro
speakerdeck
PRO
29
5.5k
We Have a Design System, Now What?
morganepeng
53
7.8k
Designing for humans not robots
tammielis
253
25k
Six Lessons from altMBA
skipperchong
28
4k
How GitHub (no longer) Works
holman
315
140k
Transcript
AWS Control Tower SESSION 04
@modokkin 2018 Youtube 🙇 https://www.youtube.com/c/timesyappliradio
INDEX 01 02 03 04 05 AWS AWS Control Tower
AWS Control Tower AWS Control Tower
01 AWS
AWS CloudTrail AWS AWS Con fi g AWS AWS Organizations
AWS IAM Identity Center (AWS Single Sign-On )
AWS Production Staging Production Account Develop AWS CloudTrail AWS Con
fi g
Production Staging Production Account Develop Develop Account AWS CloudTrail AWS
Con fi g AWS CloudTrail AWS Con fi g
Production Staging Production Corporate AWS CloudTrail AWS Con fi g
Develop Corporate Develop AWS CloudTrail AWS Con fi g AWS CloudTrail AWS Con fi g
Production Staging Production etc. Develop Develop Corporate Corporate
AWS Organizations Workloads OU Production OU SCP Staging OU Develop
OU SCP SCP Security OU SCP SCP Exceptions OU SCP
AWS IAM Identity Center (AWS Single Sign-On ) IAM User
IAM AWS IAM Identity Center okta
AWS IAM Identity Center IAM AWS Organizations ( OU SCP
) SCP( ) 1 AWS Config
AWS
02 AWS Control Tower
AWS : https://aws.amazon.com/jp/controltower/
Guardrails( ) AWS Control Tower Amazon S 3
SSH DB
Landing Zone ( ) • AWS ( ) AWS Control
Tower H
AWS CloudTrail AWS Con fi g AWS Organizations AWS ControlTower
03 AWS Control Tower
1 . AWS 2 . 3. AWS 4 . AWS
Control Tower 5 . 6 . Control Tower Workshops https://controltower.aws-management.tools/ja/
( ) AWS Control Tower 🤗
AWS Control Tower
04 AWS Control Tower
• https://docs.aws.amazon.com/ja_jp/controltower/latest/userguide/accounts.html AWS Organizations
AWS CloudTrail Amazon S3 🆕 KMS
None
築
05
AWS IAM MFA Amazon S3
Slack AWS Chat Bot Amazon CloudWatch
Okta 築 • AWS Control Tower AWS IAM Identity Center(AWS
SSO) • Okta Okta Okta AWS IAM Identity Center 築
None
AWS Control Tower AWS AWS Control Tower
AWS
None
AWS Control Tower Yappli Tech Blog https://tech.yappli.io/entry/ yapplitechconf2022-sre
🙇
motokihabuchi
takuyay0ne
maminami373
takaakikakei
zozotech
kaz3284
shibukazu
mixi_engineers
yamada_r
tommy0124
gappy50
igaiga
destraynor
cassininazir
reverentgeek
iamctodd
marcduiker
davidbonilla
speakerdeck
morganepeng
tammielis
skipperchong
holman
