AWS Control Tower launches managed controls using declarative policies
News
AWS Control Tower has launched managed controls using declarative policies, providing new preventive control capabilities for AWS services.
- New optional controls help enforce consistent service configurations
- Initial declarative policy controls cover Amazon EC2, Amazon VPC, and Amazon EBS
- Allows disabling public sharing of resources like Amazon Machine Images (AMIs)
- Policies are designed to enforce controls regardless of new APIs or account additions
- Helps achieve control objectives like network access limitation and least privilege enforcement
These declarative policy-based preventive controls complement existing AWS Control Tower capabilities, enhancing multi-account environment security and management.
The AWS News Feed is currently looking for gold sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.
Related articles
Nov 15
2024
2024
AWS Control Tower launches configurable managed controls implemented using resource control policies
Nov 19
2025
2025
AWS Control Tower introduces a Controls Dedicated experience
Nov 21
2025
2025
AWS Control Tower introduces a controls-dedicated experience
May 22
2025
2025
AWS Control Tower releases Enabled controls view for centralized visibility
The AWS News Feed is currently looking for silver sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.