-
Notifications
You must be signed in to change notification settings - Fork 205
/
manifest_version_1.yaml
50 lines (46 loc) · 1.56 KB
/
manifest_version_1.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
---
#Default region for deploying Custom Control Tower: Code Pipeline, Step functions, Lambda, SSM parameters, and StackSets
region: us-east-1
version: 2020-01-01
# Control Tower Custom Service Control Policies
organization_policies:
- name: test-preventive-guardrails
description: To prevent from deleting or disabling resources in member accounts
policy_file: policies/preventive-guardrails.json
#Apply to the following OU(s)
apply_to_accounts_in_ou: # :type: list
- Prod
- Dev
- Test
- name: test-guardrails-2
description: To prevent from deleting or disabling resources in member accounts
policy_file: policies/preventive-guardrails.json
#Apply to the following OU(s)
apply_to_accounts_in_ou: # :type: list
- Prod
# Control Tower Custom CloudFormation Resources
cloudformation_resources:
- name: stackset-1
template_file: templates/create-ssm-parameter-keys-1.template
parameter_file: parameters/create-ssm-parameter-keys-1.json
deploy_method: stack_set
deploy_to_account: # :type: list
- Developer1
- Production1
ssm_parameters:
- name: /org/member/test-ssm/app-id
value: $[output_ApplicationId]
regions:
- us-east-1
- name: stackset-2
template_file: templates/create-ssm-parameter-keys-2.template
parameter_file: parameters/create-ssm-parameter-keys-2.json
deploy_method: stack_set
deploy_to_account: # :type: list
- Developer1
deploy_to_ou: # :type: list
- Prod
- Test
regions: # :type: list
- us-east-1
- us-east-2