1. [Home](https://www.g2.com/) 2. ... 3. [Cloud Workload Protection Platforms](https://www.g2.com/categories/cloud-workload-protection-platforms) 4. [AWS Control Tower Discussions](https://www.g2.com/products/aws-control-tower/discuss) [ ![Product Avatar Image](https://images.g2crowd.com/uploads/product/image/large_detail/large_detail_3a7a925cc43d97814fa81ec2d6c06f45/aws-control-tower.jpeg "Product Avatar Image") ](/products/aws-control-tower/reviews) [ AWS Control Tower ](/products/aws-control-tower/reviews) (25)3.9/5 AWS Control Tower is a managed service that simplifies the setup and governance of secure, multi-account AWS environments. It automates the creation of a well-architected landing zone, incorporating best practices for security, compliance, and operations. By orchestrating various AWS services, AWS Control Tower enables organizations to establish a standardized and secure cloud environment efficiently. Key Features and Functionality: - Landing Zone: Automates the setup of a secure, multi-account AWS environment based on best practices, including identity management, logging, and security controls. - Account Factory: Provides a configurable account template to standardize the provisioning of new AWS accounts with pre-approved configurations, facilitating consistent and compliant account creation. - Control Catalog: Offers a centralized repository of over 750 preconfigured controls, allowing organizations to enforce governance policies across their AWS environment. These controls include preventive, detective, and proactive measures to maintain compliance and security. - Dashboard: Provides a centralized interface for monitoring the compliance status of accounts and organizational units, offering visibility into noncompliant resources and overall governance posture. Primary Value and Problem Solved: AWS Control Tower addresses the complexity of managing multiple AWS accounts by providing a centralized, automated solution for establishing and maintaining a secure and compliant cloud environment. It reduces the time and effort required to set up multi-account environments, enforces consistent governance policies, and enhances visibility into compliance status. This enables organizations to focus on innovation and business objectives while ensuring their AWS infrastructure adheres to best practices and regulatory requirements. Show More * * * ### 34.0 Nps Score Already have AWS Control Tower? ### All AWS Control Tower Discussions Search Most CommentedMost HelpfulPinned by G2Newest All DiscussionsDiscussions with CommentsPinned by G2Discussions without Comments FilterFilter Filter byExpand/Collapse Sort by Most Commented Most Helpful Pinned by G2 Newest Filter by All Discussions Discussions with Comments Pinned by G2 Discussions without Comments ![Pinned by G2 as a common question](/assets/transparent-ad5be28fbcd25b7b08d2cebe1d957125437fb5407d75ee717965ad22c8808791.gif "Pinned by G2 as a common question") G2 Pinned by G2 as a common question • over 3 years ago More Options - [ # Is AWS control tower a service? ](/discussions/is-aws-control-tower-a-service) Is AWS control tower a service? [ Cloud Workload Protection Platforms ](https://www.g2.com/tags/cloud-workload-protection-platforms)[ Cloud Compliance Software ](https://www.g2.com/tags/cloud-compliance-software) * * * \<0\>0\>Upvotes * * * 0 Comments [![linkedin](/assets/social-logos/linkedin-afe65e46604a5bd5105ab9c856116204040b6b3f2b2d42562fc8071ca0c48ca0.svg "linkedin")](https://www.linkedin.com/shareArticle?mini=true&summary=Ask+AWS+Control+Tower+questions+and+get+answers+from+expert+users+in+our+AWS+Control+Tower+Discussions+section.&title=AWS+Control+Tower+Discussions+%7C+G2&url=https%3A%2F%2Fwww.g2.com%2Fproducts%2Faws-control-tower%2Fdiscuss) [![twitter](/assets/social-logos/twitter-61aaec80434c71387b8f7326e480592eae71c0a65afd051d66fce9b75a9bf417.svg "twitter")](https://twitter.com/intent/tweet?text=AWS+Control+Tower+Discussions+%7C+G2&url=https%3A%2F%2Fwww.g2.com%2Fproducts%2Faws-control-tower%2Fdiscuss&via=G2dotcom) [![facebook](/assets/social-logos/facebook-350d0b410d6b10debcf893050e803a8633d53561aa42807b087b8daf9be3668f.svg "facebook")](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fwww.g2.com%2Fproducts%2Faws-control-tower%2Fdiscuss) [![gmail](/assets/social-logos/gmail-6db42f21e7c254fae201b112bef0dd15d25223a5cbb32691ce80eab43761eadf.svg "gmail")](https://mail.google.com/mail/?view=cm&fs=1&tf=1&to=&su=AWS+Control+Tower+Discussions+%7C+G2&body=https%3A%2F%2Fwww.g2.com%2Fproducts%2Faws-control-tower%2Fdiscuss%0aAsk+AWS+Control+Tower+questions+and+get+answers+from+expert+users+in+our+AWS+Control+Tower+Discussions+section.) [![mail](/assets/social-logos/mail-d55c53b04bf49872e40cd2443b85a99caa23394e6cf154ae32a9d08377c15d86.svg "mail")](mailto:?subject=AWS+Control+Tower+Discussions+%7C+G2&body=https%3A%2F%2Fwww.g2.com%2Fproducts%2Faws-control-tower%2Fdiscuss%0aAsk+AWS+Control+Tower+questions+and+get+answers+from+expert+users+in+our+AWS+Control+Tower+Discussions+section.) ![copy_link](/assets/social-logos/copy_link-05d8dc5dc8576fc78425ad34d07241b060878835e555a30417ff41c18335e575.svg "copy\_link") ![Pinned by G2 as a common question](/assets/transparent-ad5be28fbcd25b7b08d2cebe1d957125437fb5407d75ee717965ad22c8808791.gif "Pinned by G2 as a common question") G2 Pinned by G2 as a common question • over 3 years ago More Options - [ # What is the difference between AWS control tower and AWS organizations? ](/discussions/what-is-the-difference-between-aws-control-tower-and-aws-organizations) What is the difference between AWS control tower and AWS organizations? [ Cloud Workload Protection Platforms ](https://www.g2.com/tags/cloud-workload-protection-platforms)[ Cloud Compliance Software ](https://www.g2.com/tags/cloud-compliance-software) * * * \<0\>0\>Upvotes * * * 0 Comments [![linkedin](/assets/social-logos/linkedin-afe65e46604a5bd5105ab9c856116204040b6b3f2b2d42562fc8071ca0c48ca0.svg "linkedin")](https://www.linkedin.com/shareArticle?mini=true&summary=Ask+AWS+Control+Tower+questions+and+get+answers+from+expert+users+in+our+AWS+Control+Tower+Discussions+section.&title=AWS+Control+Tower+Discussions+%7C+G2&url=https%3A%2F%2Fwww.g2.com%2Fproducts%2Faws-control-tower%2Fdiscuss) [![twitter](/assets/social-logos/twitter-61aaec80434c71387b8f7326e480592eae71c0a65afd051d66fce9b75a9bf417.svg "twitter")](https://twitter.com/intent/tweet?text=AWS+Control+Tower+Discussions+%7C+G2&url=https%3A%2F%2Fwww.g2.com%2Fproducts%2Faws-control-tower%2Fdiscuss&via=G2dotcom) [![facebook](/assets/social-logos/facebook-350d0b410d6b10debcf893050e803a8633d53561aa42807b087b8daf9be3668f.svg "facebook")](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fwww.g2.com%2Fproducts%2Faws-control-tower%2Fdiscuss) [![gmail](/assets/social-logos/gmail-6db42f21e7c254fae201b112bef0dd15d25223a5cbb32691ce80eab43761eadf.svg "gmail")](https://mail.google.com/mail/?view=cm&fs=1&tf=1&to=&su=AWS+Control+Tower+Discussions+%7C+G2&body=https%3A%2F%2Fwww.g2.com%2Fproducts%2Faws-control-tower%2Fdiscuss%0aAsk+AWS+Control+Tower+questions+and+get+answers+from+expert+users+in+our+AWS+Control+Tower+Discussions+section.) [![mail](/assets/social-logos/mail-d55c53b04bf49872e40cd2443b85a99caa23394e6cf154ae32a9d08377c15d86.svg "mail")](mailto:?subject=AWS+Control+Tower+Discussions+%7C+G2&body=https%3A%2F%2Fwww.g2.com%2Fproducts%2Faws-control-tower%2Fdiscuss%0aAsk+AWS+Control+Tower+questions+and+get+answers+from+expert+users+in+our+AWS+Control+Tower+Discussions+section.) ![copy_link](/assets/social-logos/copy_link-05d8dc5dc8576fc78425ad34d07241b060878835e555a30417ff41c18335e575.svg "copy\_link") ![Pinned by G2 as a common question](/assets/transparent-ad5be28fbcd25b7b08d2cebe1d957125437fb5407d75ee717965ad22c8808791.gif "Pinned by G2 as a common question") G2 Pinned by G2 as a common question • almost 4 years ago More Options - [ # What is AWS Watchtower? ](/discussions/what-is-aws-watchtower) What is AWS Watchtower? [ Cloud Workload Protection Platforms ](https://www.g2.com/tags/cloud-workload-protection-platforms)[ Cloud Compliance Software ](https://www.g2.com/tags/cloud-compliance-software) * * * \<0\>0\>Upvotes * * * 0 Comments [![linkedin](/assets/social-logos/linkedin-afe65e46604a5bd5105ab9c856116204040b6b3f2b2d42562fc8071ca0c48ca0.svg "linkedin")](https://www.linkedin.com/shareArticle?mini=true&summary=Ask+AWS+Control+Tower+questions+and+get+answers+from+expert+users+in+our+AWS+Control+Tower+Discussions+section.&title=AWS+Control+Tower+Discussions+%7C+G2&url=https%3A%2F%2Fwww.g2.com%2Fproducts%2Faws-control-tower%2Fdiscuss) [![twitter](/assets/social-logos/twitter-61aaec80434c71387b8f7326e480592eae71c0a65afd051d66fce9b75a9bf417.svg "twitter")](https://twitter.com/intent/tweet?text=AWS+Control+Tower+Discussions+%7C+G2&url=https%3A%2F%2Fwww.g2.com%2Fproducts%2Faws-control-tower%2Fdiscuss&via=G2dotcom) [![facebook](/assets/social-logos/facebook-350d0b410d6b10debcf893050e803a8633d53561aa42807b087b8daf9be3668f.svg "facebook")](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fwww.g2.com%2Fproducts%2Faws-control-tower%2Fdiscuss) [![gmail](/assets/social-logos/gmail-6db42f21e7c254fae201b112bef0dd15d25223a5cbb32691ce80eab43761eadf.svg "gmail")](https://mail.google.com/mail/?view=cm&fs=1&tf=1&to=&su=AWS+Control+Tower+Discussions+%7C+G2&body=https%3A%2F%2Fwww.g2.com%2Fproducts%2Faws-control-tower%2Fdiscuss%0aAsk+AWS+Control+Tower+questions+and+get+answers+from+expert+users+in+our+AWS+Control+Tower+Discussions+section.) [![mail](/assets/social-logos/mail-d55c53b04bf49872e40cd2443b85a99caa23394e6cf154ae32a9d08377c15d86.svg "mail")](mailto:?subject=AWS+Control+Tower+Discussions+%7C+G2&body=https%3A%2F%2Fwww.g2.com%2Fproducts%2Faws-control-tower%2Fdiscuss%0aAsk+AWS+Control+Tower+questions+and+get+answers+from+expert+users+in+our+AWS+Control+Tower+Discussions+section.) ![copy_link](/assets/social-logos/copy_link-05d8dc5dc8576fc78425ad34d07241b060878835e555a30417ff41c18335e575.svg "copy\_link") ![Pinned by G2 as a common question](/assets/transparent-ad5be28fbcd25b7b08d2cebe1d957125437fb5407d75ee717965ad22c8808791.gif "Pinned by G2 as a common question") G2 Pinned by G2 as a common question • about 4 years ago More Options - [ # What does AWS control tower do? ](/discussions/what-does-aws-control-tower-do) What does AWS control tower do? [ Cloud Compliance Software ](https://www.g2.com/tags/cloud-compliance-software)[ Cloud Workload Protection Platforms ](https://www.g2.com/tags/cloud-workload-protection-platforms) * * * \<0\>0\>Upvotes * * * 0 Comments [![linkedin](/assets/social-logos/linkedin-afe65e46604a5bd5105ab9c856116204040b6b3f2b2d42562fc8071ca0c48ca0.svg "linkedin")](https://www.linkedin.com/shareArticle?mini=true&summary=Ask+AWS+Control+Tower+questions+and+get+answers+from+expert+users+in+our+AWS+Control+Tower+Discussions+section.&title=AWS+Control+Tower+Discussions+%7C+G2&url=https%3A%2F%2Fwww.g2.com%2Fproducts%2Faws-control-tower%2Fdiscuss) [![twitter](/assets/social-logos/twitter-61aaec80434c71387b8f7326e480592eae71c0a65afd051d66fce9b75a9bf417.svg "twitter")](https://twitter.com/intent/tweet?text=AWS+Control+Tower+Discussions+%7C+G2&url=https%3A%2F%2Fwww.g2.com%2Fproducts%2Faws-control-tower%2Fdiscuss&via=G2dotcom) [![facebook](/assets/social-logos/facebook-350d0b410d6b10debcf893050e803a8633d53561aa42807b087b8daf9be3668f.svg "facebook")](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fwww.g2.com%2Fproducts%2Faws-control-tower%2Fdiscuss) [![gmail](/assets/social-logos/gmail-6db42f21e7c254fae201b112bef0dd15d25223a5cbb32691ce80eab43761eadf.svg "gmail")](https://mail.google.com/mail/?view=cm&fs=1&tf=1&to=&su=AWS+Control+Tower+Discussions+%7C+G2&body=https%3A%2F%2Fwww.g2.com%2Fproducts%2Faws-control-tower%2Fdiscuss%0aAsk+AWS+Control+Tower+questions+and+get+answers+from+expert+users+in+our+AWS+Control+Tower+Discussions+section.) [![mail](/assets/social-logos/mail-d55c53b04bf49872e40cd2443b85a99caa23394e6cf154ae32a9d08377c15d86.svg "mail")](mailto:?subject=AWS+Control+Tower+Discussions+%7C+G2&body=https%3A%2F%2Fwww.g2.com%2Fproducts%2Faws-control-tower%2Fdiscuss%0aAsk+AWS+Control+Tower+questions+and+get+answers+from+expert+users+in+our+AWS+Control+Tower+Discussions+section.) ![copy_link](/assets/social-logos/copy_link-05d8dc5dc8576fc78425ad34d07241b060878835e555a30417ff41c18335e575.svg "copy\_link") ![Verified User](/assets/icons/anonymous-avatar-purple-4ae1032bdb50ee5682003170c8184aee790d25958bd397abbd384ba52c596a7b.svg "Verified User") G2 Verified User • over 3 years ago More Options - [ # Control Tower KMS dcryption ](/discussions/control-tower-kms-dcryption) I have configured KMS while setting up the landing zone. But unble to access the cloud trail log from S3 bucket located in log-archive account. Error: The ciphertext refers to a customer master key that does not exist, does not exist in this region, or you are not allowed to access [ Cloud Workload Protection Platforms ](https://www.g2.com/tags/cloud-workload-protection-platforms)[ Cloud Compliance Software ](https://www.g2.com/tags/cloud-compliance-software) * * * \<0\>0\>Upvotes * * * 0 Comments [![linkedin](/assets/social-logos/linkedin-afe65e46604a5bd5105ab9c856116204040b6b3f2b2d42562fc8071ca0c48ca0.svg "linkedin")](https://www.linkedin.com/shareArticle?mini=true&summary=Ask+AWS+Control+Tower+questions+and+get+answers+from+expert+users+in+our+AWS+Control+Tower+Discussions+section.&title=AWS+Control+Tower+Discussions+%7C+G2&url=https%3A%2F%2Fwww.g2.com%2Fproducts%2Faws-control-tower%2Fdiscuss) [![twitter](/assets/social-logos/twitter-61aaec80434c71387b8f7326e480592eae71c0a65afd051d66fce9b75a9bf417.svg "twitter")](https://twitter.com/intent/tweet?text=AWS+Control+Tower+Discussions+%7C+G2&url=https%3A%2F%2Fwww.g2.com%2Fproducts%2Faws-control-tower%2Fdiscuss&via=G2dotcom) [![facebook](/assets/social-logos/facebook-350d0b410d6b10debcf893050e803a8633d53561aa42807b087b8daf9be3668f.svg "facebook")](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fwww.g2.com%2Fproducts%2Faws-control-tower%2Fdiscuss) [![gmail](/assets/social-logos/gmail-6db42f21e7c254fae201b112bef0dd15d25223a5cbb32691ce80eab43761eadf.svg "gmail")](https://mail.google.com/mail/?view=cm&fs=1&tf=1&to=&su=AWS+Control+Tower+Discussions+%7C+G2&body=https%3A%2F%2Fwww.g2.com%2Fproducts%2Faws-control-tower%2Fdiscuss%0aAsk+AWS+Control+Tower+questions+and+get+answers+from+expert+users+in+our+AWS+Control+Tower+Discussions+section.) [![mail](/assets/social-logos/mail-d55c53b04bf49872e40cd2443b85a99caa23394e6cf154ae32a9d08377c15d86.svg "mail")](mailto:?subject=AWS+Control+Tower+Discussions+%7C+G2&body=https%3A%2F%2Fwww.g2.com%2Fproducts%2Faws-control-tower%2Fdiscuss%0aAsk+AWS+Control+Tower+questions+and+get+answers+from+expert+users+in+our+AWS+Control+Tower+Discussions+section.) ![copy_link](/assets/social-logos/copy_link-05d8dc5dc8576fc78425ad34d07241b060878835e555a30417ff41c18335e575.svg "copy\_link") ![Nasir A.](/assets/transparent-ad5be28fbcd25b7b08d2cebe1d957125437fb5407d75ee717965ad22c8808791.gif "Nasir A.") NA Loading... [Nasir A.](https://www.g2.com/users/170f8556-f975-4597-8c85-43b85117b67f "Nasir A.") • over 4 years ago Business Systems Analyst - CPQ at Oracle India Pvt. Ltd More Options - [ # How do I unsubscribe my AWS organization from CloudTrail? ](/discussions/how-do-i-unsubscribe-my-aws-organization-from-cloudtrail) [ Cloud Compliance Software ](https://www.g2.com/tags/cloud-compliance-software)[ Cloud Workload Protection Platforms ](https://www.g2.com/tags/cloud-workload-protection-platforms) * * * \<0\>0\>Upvotes * * * 1 Comment [![linkedin](/assets/social-logos/linkedin-afe65e46604a5bd5105ab9c856116204040b6b3f2b2d42562fc8071ca0c48ca0.svg "linkedin")](https://www.linkedin.com/shareArticle?mini=true&summary=Ask+AWS+Control+Tower+questions+and+get+answers+from+expert+users+in+our+AWS+Control+Tower+Discussions+section.&title=AWS+Control+Tower+Discussions+%7C+G2&url=https%3A%2F%2Fwww.g2.com%2Fproducts%2Faws-control-tower%2Fdiscuss) [![twitter](/assets/social-logos/twitter-61aaec80434c71387b8f7326e480592eae71c0a65afd051d66fce9b75a9bf417.svg "twitter")](https://twitter.com/intent/tweet?text=AWS+Control+Tower+Discussions+%7C+G2&url=https%3A%2F%2Fwww.g2.com%2Fproducts%2Faws-control-tower%2Fdiscuss&via=G2dotcom) [![facebook](/assets/social-logos/facebook-350d0b410d6b10debcf893050e803a8633d53561aa42807b087b8daf9be3668f.svg "facebook")](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fwww.g2.com%2Fproducts%2Faws-control-tower%2Fdiscuss) [![gmail](/assets/social-logos/gmail-6db42f21e7c254fae201b112bef0dd15d25223a5cbb32691ce80eab43761eadf.svg "gmail")](https://mail.google.com/mail/?view=cm&fs=1&tf=1&to=&su=AWS+Control+Tower+Discussions+%7C+G2&body=https%3A%2F%2Fwww.g2.com%2Fproducts%2Faws-control-tower%2Fdiscuss%0aAsk+AWS+Control+Tower+questions+and+get+answers+from+expert+users+in+our+AWS+Control+Tower+Discussions+section.) [![mail](/assets/social-logos/mail-d55c53b04bf49872e40cd2443b85a99caa23394e6cf154ae32a9d08377c15d86.svg "mail")](mailto:?subject=AWS+Control+Tower+Discussions+%7C+G2&body=https%3A%2F%2Fwww.g2.com%2Fproducts%2Faws-control-tower%2Fdiscuss%0aAsk+AWS+Control+Tower+questions+and+get+answers+from+expert+users+in+our+AWS+Control+Tower+Discussions+section.) ![copy_link](/assets/social-logos/copy_link-05d8dc5dc8576fc78425ad34d07241b060878835e555a30417ff41c18335e575.svg "copy\_link") ## Start a New Software Discussion Have a software question? Get answers from real users and experts [Start A Discussion](/products/aws-control-tower/discussions/new) * * * ![Product Avatar Image](https://images.g2crowd.com/uploads/product/image/thumb_square/thumb_square_3a7a925cc43d97814fa81ec2d6c06f45/aws-control-tower.jpeg "Product Avatar Image") ### Have you used AWS Control Tower before? Answer a few questions to help the AWS Control Tower community [ Yes ](javascript:void(0))[ Yes ](https://www.g2.com/authorize?form=signup&return_to=https%3A%2F%2Fwww.g2.com%2Fproducts%2Faws-control-tower%2Fdiscuss%3Fsmall_ask%3Daws-control-tower) No ## Top Contributors in AWS Control Tower 1 ![Nasir A.](/assets/transparent-ad5be28fbcd25b7b08d2cebe1d957125437fb5407d75ee717965ad22c8808791.gif "Nasir A.") NA Loading... ### [Nasir A.](https://www.g2.com/users/170f8556-f975-4597-8c85-43b85117b67f "Nasir A.") Business Analyst-CPQ 1 pt 2 ![asia h.](/assets/transparent-ad5be28fbcd25b7b08d2cebe1d957125437fb5407d75ee717965ad22c8808791.gif "asia h.") AH Loading... ### [asia h.](https://www.g2.com/users/c62f9002-eb8e-4f01-893d-699055458b85 "asia h.") Kurucu 1 pt 3 ![Ashok M.](/assets/transparent-ad5be28fbcd25b7b08d2cebe1d957125437fb5407d75ee717965ad22c8808791.gif "Ashok M.") AM Loading... ### [Ashok M.](https://www.g2.com/users/289eeb76-acb1-4fee-a0cc-71f2dfa54508 "Ashok M.") Cloud Architect 1 pt