-
AFT is now supported in GovCloud
- AFT is unable to vend accounts on your behalf in GovCloud.
- To create new member accounts please do the following:
- Create an account following https://docs.aws.amazon.com/govcloud-us/latest/UserGuide/getting-started-sign-up.html
- Enroll the account in your GovCloud Control Tower environment, https://docs.aws.amazon.com/controltower/latest/userguide/enroll-account.html
- To manage them with AFT, please follow https://docs.aws.amazon.com/controltower/latest/userguide/aft-update-account.html
-
Note, To provision AFT in GovCloud you must:
- Disable VPC Endpoints during deployment by setting
aft_vpc_endpoint
tofalse
. - Configure your AFT deployments home region to PDT by setting
ct_home_region
tous-gov-west-1
- Configure the AFT deployments secondary region to OSU by setting
tf_backend_secondary_region
tous-gov-east-1
- Disable VPC Endpoints during deployment by setting