This article provides a comprehensive guide for importing existing AWS Control Tower managed accounts into Account Factory for Terraform (AFT) for centralized management.

• AFT version 1.3.1+ required; accounts must be Control Tower managed
• Create account_import.tf file with required variables in aft-account-request repository
• Validate import success via DynamoDB tables, CodePipeline, and Step Functions
• Account import workflow: Terraform commit → DynamoDB → Lambda → Service Catalog verification → Step Functions execution
• Common errors: typos in AccountEmail/AccountName/OU, reserved tag prefixes, unhealthy provisioned products
• Troubleshooting: inspect CodePipeline logs, DynamoDB streams, Lambda CloudWatch logs, and Step Functions execution
• Successful import deploys IAM roles, creates tags, and generates account-specific CodePipeline

The guide offers step-by-step instructions and troubleshooting tips for successfully importing Control Tower accounts into AFT management at scale using Terraform.