aws-service-catalog-reference-architectures

aws-service-catalog-reference-architectures copied to clipboard

GuardDuty lambda fails to find trail in DelegatedAdminAccount

2

Issue: After updating to Landing Zone 3.0 Lambda function `security/guardduty/function.zip` fails to run when delegated account was set because describe_trails in `create_s3_destination` request returns `[]` Reason: CloudTrail trails were migrated...

borisyukd

BulkLambdas fails to create, gives error.

2

BulkLambdas fails to create, gives error. The following resource(s) failed to create: [LambdaUploadCSV, LambdaCleanup, StartStateMachine, LambdaMonitor, LambdaReport, LambdaProvision, LambdaHandleFailed, LambdaTerminate].

shreyasnaik

While deploying the solution with codepipeline/ct_install_multi.sh , the stack SC-RA-IACPipeline fails to create with the following error : DeployedTemplatesBucketPolicy: Invalid principal in policy (Service: Amazon S3; Status Code: 400; Error...

shenril

While building aws-service-catalog-reference-architectures/iam/sc-ec2vpc-launchrole.yml, CodeBuild fails the build: ------------------------------------------------------------------------------------------------------------------------ | FAIL F38 | | Resources: ["SCLaunchConstraintRole"] | Line Numbers: [35] | | IAM role should not allow * resource with PassRole...

ghost

Hello, after testing product " Demo Apache Webserver" I received an error in cloudformation: ``` Instance i-002063fcc56a1fa19 failed to stabilize. Current state: shutting-down. Reason: Client.InternalError: Client error on launch ```...

1robroos

Hello, I ran into an issue. I saw in the pipeline this: ``` [Container] 2022/04/09 10:03:43 Running command aws cloudformation update-stack-set --stack-set-name SC-IAC-automated-IAMroles --parameters "[{\"ParameterKey\":\"RepoRootURL\",\"ParameterValue\":\"https://$DEPLOY_BUCKET.s3.amazonaws.com/\"}]" --template-url "[https://$DEPLOY_BUCKET.s3.amazonaws.com/iam/sc-demosetup-iam.json](https://%24deploy_bucket.s3.amazonaws.com/iam/sc-demosetup-iam.json)" --capabilities CAPABILITY_IAM CAPABILITY_NAMED_IAM...

1robroos

During recent issue with launching a Service catalog product, I ran into "Error: Null". Later discovered that product I was trying to create already exist, error message was misleading. Opened...

chaitrakn

Re: AWS Service Catalog RDS Reference architecture In the portfolio [CloudFormation template](https://s3.amazonaws.com/aws-service-catalog-reference-architectures/rds/sc-portfolio-rds.json) there is a typo in line 196 that triggers an S3 access denied error when creating the stack...

rpgd60

Fix for Control Tower v.3.0

1

*Issue #109* *Description of changes:* Control Tower 3.0 migrated to Organization CloudTrail. Changed code to retrieve CloudTrail from management account instead of delegated admin account. By submitting this pull request,...

farside5

Unable to remove tags from provisioned products.

1

We are unable to remove tags from Service Catalog provisioned product. Even though, it is included in the Cloudtrail call that tag is removed but still exist within the pp....

srcndogan