{"id":44362,"date":"2021-12-03T17:54:18","date_gmt":"2021-12-03T08:54:18","guid":{"rendered":"https:\/\/jirak.net\/wp\/aws-control-tower-%ec%97%85%eb%8d%b0%ec%9d%b4%ed%8a%b8-%eb%8d%b0%ec%9d%b4%ed%84%b0-%eb%a0%88%ec%a7%80%eb%8d%98%ec%8b%9c%eb%a5%bc-%ec%9c%84%ed%95%9c-%eb%a6%ac%ec%a0%84-%ea%b1%b0%eb%b6%80\/"},"modified":"2021-12-03T18:34:10","modified_gmt":"2021-12-03T09:34:10","slug":"aws-control-tower-%ec%97%85%eb%8d%b0%ec%9d%b4%ed%8a%b8-%eb%8d%b0%ec%9d%b4%ed%84%b0-%eb%a0%88%ec%a7%80%eb%8d%98%ec%8b%9c%eb%a5%bc-%ec%9c%84%ed%95%9c-%eb%a6%ac%ec%a0%84-%ea%b1%b0%eb%b6%80","status":"publish","type":"post","link":"https:\/\/jirak.net\/wp\/aws-control-tower-%ec%97%85%eb%8d%b0%ec%9d%b4%ed%8a%b8-%eb%8d%b0%ec%9d%b4%ed%84%b0-%eb%a0%88%ec%a7%80%eb%8d%98%ec%8b%9c%eb%a5%bc-%ec%9c%84%ed%95%9c-%eb%a6%ac%ec%a0%84-%ea%b1%b0%eb%b6%80\/","title":{"rendered":"AWS Control Tower \uc5c5\ub370\uc774\ud2b8 \u2014 \ub370\uc774\ud130 \ub808\uc9c0\ub358\uc2dc\ub97c \uc704\ud55c \ub9ac\uc804 \uac70\ubd80 \ubc0f \uac00\ub4dc \ub808\uc77c"},"content":{"rendered":"<p>AWS Control Tower \uc5c5\ub370\uc774\ud2b8 \u2014 \ub370\uc774\ud130 \ub808\uc9c0\ub358\uc2dc\ub97c \uc704\ud55c \ub9ac\uc804 \uac70\ubd80 \ubc0f \uac00\ub4dc \ub808\uc77c<br \/>\n<img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/jirak.net\/wp\/wp-content\/uploads\/2021\/12\/control-tower-data-residency-guardrails-1024x641-1.png\" width=\"1024\" height=\"641\"><\/p>\n<p>\uaddc\uc81c\uac00 \uc5c4\uaca9\ud55c \uc0b0\uc5c5 \ubc0f \uacf5\uacf5 \ubd80\ubb38\uc758 \uace0\uac1d\uacfc \uac19\uc740 \ub9ce\uc740 \uace0\uac1d\uc740 \ub370\uc774\ud130\uac00 \uc800\uc7a5\ub418\uace0 \ucc98\ub9ac\ub418\ub294 \uc704\uce58\ub97c \uc81c\uc5b4\ud558\ub824\uace0 \ud569\ub2c8\ub2e4. AWS\ub294 \uc774\ubbf8 \ud604\uc9c0 \ubc95\ub960 \ubc0f \uaddc\uc815\uc744 \uc900\uc218\ud558\uae30 \uc704\ud55c \ub9ce\uc740 \ub3c4\uad6c\uc640 \uae30\ub2a5\uc744 \uc81c\uacf5\ud558\uace0 \uc788\uc9c0\ub9cc, <strong>\ub370\uc774\ud130 \ub808\uc9c0\ub358\uc2dc<\/strong> \uc694\uad6c \uc0ac\ud56d\uc744 \ub2e8\uc77c \ubc0f \ub2e4\uc911 \uacc4\uc815 \ud658\uacbd\uc5d0 \uc801\uc6a9\ud560 \uc218 \uc788\ub294 \uc81c\uc5b4 \uae30\ub2a5\uc73c\ub85c \ubcc0\ud658\ud558\ub294 \uac04\uc18c\ud654\ub41c \ubc29\ubc95\uc744 \uc81c\uacf5\ud558\ub824\uace0 \ud569\ub2c8\ub2e4.<\/p>\n<p>\uc624\ub298\ubd80\ud130 <a href=\"https:\/\/aws.amazon.com\/controltower\/\">AWS Control Tower<\/a>\ub97c \uc0ac\uc6a9\ud558\uc5ec <a href=\"https:\/\/docs.aws.amazon.com\/controltower\/latest\/userguide\/guardrails.html\">\uac00\ub4dc \ub808\uc77c<\/a>\uc774\ub77c\uace0 \ud558\ub294 \ub370\uc774\ud130 \ub808\uc9c0\ub358\uc2dc <strong>\uc608\ubc29<\/strong> \ubc0f <strong>\ud0d0\uc9c0<\/strong> \uc81c\uc5b4 \uae30\ub2a5\uc744 \ubc30\ud3ec\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4. \uc774\ub7ec\ud55c \uac00\ub4dc \ub808\uc77c\uc740 AWS Control Tower\uc5d0\uc11c \ube4c\ub4dc \ubc0f \uad00\ub9ac\ud558\ub294 <a href=\"https:\/\/docs.aws.amazon.com\/organizations\/latest\/userguide\/orgs_manage_policies_scps.html\">\uc11c\ube44\uc2a4 \uc81c\uc5b4 \uc815\ucc45(SCP)<\/a>\uc744 \ud1b5\ud574 AWS API\uc5d0 \ub300\ud55c \uc561\uc138\uc2a4\ub97c \uc81c\ud55c\ud568\uc73c\ub85c\uc368 \uc6d0\uce58 \uc54a\ub294 AWS \ub9ac\uc804\uc5d0 \ub9ac\uc18c\uc2a4\ub97c \ud504\ub85c\ube44\uc800\ub2dd\ud558\ub294 \uac83\uc744 \uc608\ubc29\ud569\ub2c8\ub2e4. \uc774\ub7ec\ud55c \ubc29\uc2dd\uc73c\ub85c \uc778\ud504\ub77c \uc218\uc900\uc5d0\uc11c \uc120\ud0dd\ud55c \ub9ac\uc804 \uc678\ubd80\uc5d0 \ucf58\ud150\uce20\ub97c \uc0dd\uc131\ud558\uac70\ub098 \ub9ac\uc804 \uc678\ubd80\ub85c \ucf58\ud150\uce20\ub97c \uc804\uc1a1\ud560 \uc218 \uc5c6\uc2b5\ub2c8\ub2e4. \uc774 \ub9e5\ub77d\uc5d0\uc11c \ucf58\ud150\uce20\ub294 \ucc98\ub9ac \ub610\ub294 \uc800\uc7a5\uc744 \uc704\ud574 AWS\uc5d0 \ud638\uc2a4\ud2b8\ub418\ub294 \uc18c\ud504\ud2b8\uc6e8\uc5b4(\uba38\uc2e0 \uc774\ubbf8\uc9c0 \ud3ec\ud568), \ub370\uc774\ud130, \ud14d\uc2a4\ud2b8, \uc624\ub514\uc624, \ube44\ub514\uc624 \ub610\ub294 \uc774\ubbf8\uc9c0\uc77c \uc218 \uc788\uc2b5\ub2c8\ub2e4. \uc608\ub97c \ub4e4\uc5b4 \ub3c5\uc77c\uc758 AWS \uace0\uac1d\uc740 \ud504\ub791\ud06c\ud478\ub974\ud2b8 \uc678\ubd80 \ub9ac\uc804\uc758 AWS \uc11c\ube44\uc2a4\uc5d0 \ub300\ud55c \uc561\uc138\uc2a4\ub97c \uac70\ubd80\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4. \ub2e8, <a href=\"https:\/\/aws.amazon.com\/iam\/\">AWS Identity and Access Management(IAM)<\/a> \ubc0f <a href=\"https:\/\/aws.amazon.com\/organizations\/\">AWS Organizations<\/a>\uc640 \uac19\uc740 \uae00\ub85c\ubc8c \uc11c\ube44\uc2a4\ub294 \uc608\uc678\uc785\ub2c8\ub2e4.<\/p>\n<p>\ub610\ud55c AWS Control Tower\ub294 \uae30\ubcf8 AWS \uc11c\ube44\uc2a4 \uc635\uc158\uc5d0\uc11c \ub370\uc774\ud130 \ub808\uc9c0\ub358\uc2dc\ub97c \ucd94\uac00\ub85c \uc81c\uc5b4\ud560 \uc218 \uc788\ub294 \uac00\ub4dc \ub808\uc77c(\uc608\ub97c \ub4e4\uc5b4 <a href=\"https:\/\/aws.amazon.com\/s3\/\">Amazon Simple Storage Service(Amazon S3)<\/a> \uad50\ucc28 \ub9ac\uc804 \ubcf5\uc81c \ucc28\ub2e8 \ub610\ub294 \uc778\ud130\ub137 \uac8c\uc774\ud2b8\uc6e8\uc774 \uc0dd\uc131 \ucc28\ub2e8)\uc744 \uc81c\uacf5\ud569\ub2c8\ub2e4.<\/p>\n<p>AWS Control Tower \uad00\ub9ac\uc5d0 \uc0ac\uc6a9\ub418\ub294 AWS \uacc4\uc815\uc740 \uc0c8\ub85c\uc6b4 \ub9ac\uc804 \uac70\ubd80 \uc124\uc815\uc5d0 \uc758\ud574 \uc81c\ud55c\ub418\uc9c0 \uc54a\uc2b5\ub2c8\ub2e4. \ub9ac\uc804 \uac70\ubd80\ub97c \ud65c\uc131\ud654\ud558\uae30 \uc804\uc5d0 \uc6d0\uce58 \uc54a\ub294 \ub9ac\uc804\uc5d0 \ub370\uc774\ud130\uac00 \uc788\ub294 \uacbd\uc6b0 \ud574\ub2f9 \uacc4\uc815\uc744 \uc218\uc815\uc5d0 \uc0ac\uc6a9\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4.<\/p>\n<p>\ud0d0\uc9c0 \uac00\ub4dc \ub808\uc77c\uc740 <a href=\"https:\/\/aws.amazon.com\/config\/\">AWS Config<\/a> \uaddc\uce59\uc744 \ud1b5\ud574 \uad6c\ud604\ub418\uba70 \ud5c8\uc6a9\ud574\uc11c\ub294 \uc548 \ub418\ub294 \uc608\uae30\uce58 \uc54a\uc740 \uad6c\uc131 \ubcc0\uacbd\uc744 \ucd94\uac00\ub85c \ud0d0\uc9c0\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4.<\/p>\n<p>\uc560\ud50c\ub9ac\ucf00\uc774\uc158 \uc218\uc900\uc5d0\uc11c \ub370\uc774\ud130 \ub808\uc9c0\ub358\uc2dc\uc5d0 \ub300\ud55c \uacf5\ub3d9 \ucc45\uc784 \ubaa8\ub378\uc744 \uacc4\uc18d \uc720\uc9c0\ud558\uc9c0\ub9cc, \uc774\ub7ec\ud55c \uc81c\uc5b4\ub97c \ud1b5\ud574 \uc778\ud504\ub77c \ubc0f \uc560\ud50c\ub9ac\ucf00\uc774\uc158 \ud300\uc774 AWS\uc5d0\uc11c \uc218\ud589\ud560 \uc218 \uc788\ub294 \uc791\uc5c5\uc744 \uc81c\ud55c\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4.<\/p>\n<p><span style=\"text-decoration: underline\"><strong>AWS Control Tower\uc5d0\uc11c \ub370\uc774\ud130 \ub808\uc9c0\ub358\uc2dc \uac00\ub4dc \ub808\uc77c \uc0ac\uc6a9<br \/> <\/strong><\/span>\uc0c8\ub85c\uc6b4 \ub370\uc774\ud130 \ub808\uc9c0\ub358\uc2dc \uac00\ub4dc \ub808\uc77c\uc744 \uc0ac\uc6a9\ud558\ub824\uba74 AWS Control Tower\ub97c \uc0ac\uc6a9\ud558\uc5ec \ub79c\ub529 \uc874\uc744 \uc0dd\uc131\ud574\uc57c \ud569\ub2c8\ub2e4. \uc790\uc138\ud55c \ub0b4\uc6a9\uc740 <a href=\"https:\/\/docs.aws.amazon.com\/controltower\/latest\/userguide\/planning-your-deployment.html\">AWS Control Tower \ub79c\ub529 \uc874 \uacc4\ud68d<\/a>\uc744 \ucc38\uc870\ud558\uc138\uc694.<\/p>\n<p>\uc0ac\uc6a9 \uac00\ub2a5\ud55c \uc0c8\ub85c\uc6b4 \uc81c\uc5b4 \uae30\ub2a5\uc744 \ubaa8\ub450 \uc0b4\ud3b4\ubcf4\ub824\uba74 <a href=\"https:\/\/console.aws.amazon.com\/controltower\/\">AWS Control Tower \ucf58\uc194<\/a>\uc758 \uc67c\ucabd \ucc3d\uc5d0\uc11c [<strong>\uac00\ub4dc \ub808\uc77c<\/strong>(Guardrails)]\uc744 \uc120\ud0dd\ud55c \ub2e4\uc74c, [<strong>\ub370\uc774\ud130 \ub808\uc9c0\ub358\uc2dc<\/strong>(Data Residency)] \ubc94\uc8fc\uc5d0\uc11c \ud655\uc778\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4. \uc5ec\uae30\uc11c\ub294 [<strong>\ub3d9\uc791<\/strong>(Behavior)]\uc744 \uae30\uc900\uc73c\ub85c \uacb0\uacfc\ub97c \uc815\ub82c\ud569\ub2c8\ub2e4. [<strong>\uc608\ubc29<\/strong>(Prevention)] \ub3d9\uc791\uc774 \uc788\ub294 \uac00\ub4dc \ub808\uc77c\uc740 SCP\ub85c \uad6c\ud604\ub429\ub2c8\ub2e4. [<strong>\ud0d0\uc9c0<\/strong>(Detection)] \ub3d9\uc791\uc774 \uc788\ub294 \uac00\ub4dc \ub808\uc77c\uc740 AWS Config \uaddc\uce59\uc73c\ub85c \uad6c\ud604\ub429\ub2c8\ub2e4.<\/p>\n<p><a href=\"https:\/\/d2908q01vomqb2.cloudfront.net\/da4b9237bacccdf19c0760cab7aec4a8359010b0\/2021\/11\/19\/control-tower-data-residency-guardrails.png\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-57107\" src=\"https:\/\/d2908q01vomqb2.cloudfront.net\/da4b9237bacccdf19c0760cab7aec4a8359010b0\/2021\/11\/19\/control-tower-data-residency-guardrails-1024x641.png\" alt=\"\ucf58\uc194 \uc2a4\ud06c\ub9b0\uc0f7.\" width=\"600\" height=\"376\"><\/a><\/p>\n<p>\uac00\uc7a5 \ud765\ubbf8\ub85c\uc6b4 \uac00\ub4dc \ub808\uc77c\uc740 \uc544\ub9c8\ub3c4 \uc694\uccad\ub41c AWS \ub9ac\uc804\uc744 \uae30\ubc18\uc73c\ub85c AWS\uc5d0 \ub300\ud55c \uc561\uc138\uc2a4\ub97c \uac70\ubd80\ud558\ub294 \uac00\ub4dc \ub808\uc77c\uc77c \uac83\uc785\ub2c8\ub2e4. \ubaa9\ub85d\uc5d0\uc11c \uac00\ub4dc \ub808\uc77c\uc744 \uc120\ud0dd\ud558\uace0, \ud574\ub2f9 \uac00\ub4dc \ub808\uc77c\uc774 \ubaa8\ub4e0 <a href=\"https:\/\/docs.aws.amazon.com\/organizations\/latest\/userguide\/orgs_manage_ous.html\">\uc870\uc9c1 \ub2e8\uc704(OU)<\/a>\uc5d0 \uc601\ud5a5\uc744 \uc8fc\uba70 \uc5ec\uae30\uc5d0\uc11c \ud65c\uc131\ud654\ud560 \uc218 \uc5c6\uc9c0\ub9cc \ub79c\ub529 \uc874 \uc124\uc815\uc5d0\uc11c \ud65c\uc131\ud654\ud574\uc57c \ud558\uae30 \ub54c\ubb38\uc5d0 \ub2e4\ub978 \uac00\ub4dc \ub808\uc77c\uacfc \ub2e4\ub974\ub2e4\ub294 \uac83\uc744 \uc54c\uc558\uc2b5\ub2c8\ub2e4.<\/p>\n<p><a href=\"https:\/\/d2908q01vomqb2.cloudfront.net\/da4b9237bacccdf19c0760cab7aec4a8359010b0\/2021\/11\/18\/control-tower-region-deny-guardrail.png\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-large wp-image-57030\" src=\"https:\/\/d2908q01vomqb2.cloudfront.net\/da4b9237bacccdf19c0760cab7aec4a8359010b0\/2021\/11\/18\/control-tower-region-deny-guardrail-1024x160.png\" alt=\"\ucf58\uc194 \uc2a4\ud06c\ub9b0\uc0f7.\" width=\"1024\" height=\"160\"><\/a><\/p>\n<p>[<strong>\uac1c\uc694<\/strong>(Overview)] \uc544\ub798\uc758 [<strong>\uac00\ub4dc \ub808\uc77c \uad6c\uc131 \uc694\uc18c<\/strong>(Guardrail components)]\uc5d0\ub294 \uc774 \uac00\ub4dc \ub808\uc77c\uc758 \uc804\uccb4 SCP\uc5d0 \ub300\ud55c \ub9c1\ud06c\uac00 \uc788\uc2b5\ub2c8\ub2e4. \uadf8\ub9ac\uace0 \uc774 \uc124\uc815\uc744 \uc0ac\uc6a9\ud558\ub3c4\ub85d \uc9c0\uc815\ud574\ub3c4 \ube44\uad00\ub9ac \ub9ac\uc804\uc5d0 \ub300\ud574 \uacc4\uc18d \ud5c8\uc6a9\ub420 AWS API \ubaa9\ub85d\uc744 \ubcfc \uc218 \uc788\uc2b5\ub2c8\ub2e4. \uc694\uad6c \uc0ac\ud56d\uc5d0 \ub530\ub77c <a href=\"https:\/\/aws.amazon.com\/cloudfront\/\">Amazon CloudFront<\/a> \ub610\ub294 <a title=\"AWS Global Accelerator\" href=\"https:\/\/aws.amazon.com\/global-accelerator\/\">AWS Global Accelerator<\/a>\uc640 \uac19\uc740 \uc77c\ubd80 \uc11c\ube44\uc2a4\ub294 \uc0ac\uc6a9\uc790 \uc9c0\uc815 SCP\uc5d0 \uc758\ud574 \ucd94\uac00\ub85c \uc81c\ud55c\ub420 \uc218 \uc788\uc2b5\ub2c8\ub2e4.<\/p>\n<p>[<strong>\ub79c\ub529 \uc874 \uc124\uc815<\/strong>(Landing zone settings)]\uc5d0\uc11c \ub9ac\uc804 \uac70\ubd80 \uac00\ub4dc \ub808\uc77c\uc740 \ud604\uc7ac \uc0ac\uc6a9\ud558\ub3c4\ub85d \uc124\uc815\ub418\uc5b4 \uc788\uc9c0 \uc54a\uc2b5\ub2c8\ub2e4. [<strong>\uc124\uc815 \uc218\uc815<\/strong>(Modify settings)]\uc744 \uc120\ud0dd\ud55c \ub2e4\uc74c, [<strong>\ub9ac\uc804 \uac70\ubd80 \uc124\uc815<\/strong>(Region deny settings)]\uc744 \uc0ac\uc6a9\ud558\ub3c4\ub85d \uc124\uc815\ud569\ub2c8\ub2e4.<\/p>\n<p><a href=\"https:\/\/d2908q01vomqb2.cloudfront.net\/da4b9237bacccdf19c0760cab7aec4a8359010b0\/2021\/11\/23\/control-tower-region-deny-settings-1.png\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-57656\" src=\"https:\/\/d2908q01vomqb2.cloudfront.net\/da4b9237bacccdf19c0760cab7aec4a8359010b0\/2021\/11\/23\/control-tower-region-deny-settings-1-1024x758.png\" alt=\"\ucf58\uc194 \uc2a4\ud06c\ub9b0\uc0f7.\" width=\"600\" height=\"444\"><\/a><\/p>\n<p>\ub9ac\uc804 \uac70\ubd80 \uc124\uc815 \uc544\ub798\uc5d0\ub294 \ub79c\ub529 \uc874\uc5d0 \uc758\ud574 \uad00\ub9ac\ub418\ub294 AWS \ub9ac\uc804 \ubaa9\ub85d\uc774 \uc788\uc2b5\ub2c8\ub2e4. \ud574\ub2f9 \ub9ac\uc804\uc740 \ub9ac\uc804 \uac70\ubd80\ub97c \uc0ac\uc6a9\ud558\ub3c4\ub85d \uc124\uc815\ud560 \ub54c \ud5c8\uc6a9\ub418\ub294 \ub9ac\uc804\uc774 \ub429\ub2c8\ub2e4.<\/p>\n<p><a href=\"https:\/\/d2908q01vomqb2.cloudfront.net\/da4b9237bacccdf19c0760cab7aec4a8359010b0\/2021\/11\/18\/control-tower-governed-regions.png\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-57026\" src=\"https:\/\/d2908q01vomqb2.cloudfront.net\/da4b9237bacccdf19c0760cab7aec4a8359010b0\/2021\/11\/18\/control-tower-governed-regions-1024x697.png\" alt=\"\ucf58\uc194 \uc2a4\ud06c\ub9b0\uc0f7.\" width=\"600\" height=\"408\"><\/a><\/p>\n<p>\uc5ec\uae30\uc11c\ub294 \ub2e4\uc74c\uacfc \uac19\uc774 \ub124 \uac1c\uc758 \uad00\ub9ac \ub9ac\uc804\uc774 \uc788\uc2b5\ub2c8\ub2e4. \ub450 \uac1c\ub294 \ubbf8\uad6d\uc5d0, \ub450 \uac1c\ub294 \uc720\ub7fd\uc5d0 \uc788\uc2b5\ub2c8\ub2e4.<\/p>\n<ul>\n<li>\ubbf8\uad6d \ub3d9\ubd80(\ubc84\uc9c0\ub2c8\uc544 \ubd81\ubd80) \u2013 \ub79c\ub529 \uc874\uc758 \ud648 \ub9ac\uc804\uc774\uae30\ub3c4 \ud568<\/li>\n<li>\ubbf8\uad6d \uc11c\ubd80(\uc624\ub808\uace4)<\/li>\n<li>\uc720\ub7fd(\uc544\uc77c\ub79c\ub4dc)<\/li>\n<li>\uc720\ub7fd(\ud504\ub791\ud06c\ud478\ub974\ud2b8)<\/li>\n<\/ul>\n<p>\ud558\ub2e8\uc5d0\uc11c [<strong>\ub79c\ub529 \uc874 \uc5c5\ub370\uc774\ud2b8<\/strong>(Update landing zone)]\ub97c \uc120\ud0dd\ud569\ub2c8\ub2e4. \ub79c\ub529 \uc874 \uc5c5\ub370\uc774\ud2b8\ub97c \uc644\ub8cc\ud558\ub294 \ub370 \uba87 \ubd84 \uc815\ub3c4 \uac78\ub9bd\ub2c8\ub2e4. \uc774\uc81c \ub300\ubd80\ubd84\uc758 AWS API\ub294 \uad00\ub9ac \ub9ac\uc804 \uc911 \ud558\ub098\ub85c \uc5f0\uacb0\ub418\uc9c0 \uc54a\uc73c\uba74 \ucc28\ub2e8\ub429\ub2c8\ub2e4. \uba87 \uac00\uc9c0 \ud14c\uc2a4\ud2b8\ub97c \ud574\ubcf4\uaca0\uc2b5\ub2c8\ub2e4.<\/p>\n<p><span style=\"text-decoration: underline\"><strong>\uc0cc\ub4dc\ubc15\uc2a4 \uacc4\uc815\uc5d0\uc11c \ub9ac\uc804 \uac70\ubd80 \ud14c\uc2a4\ud2b8<br \/> <\/strong><\/span><a title=\"AWS Single Sign-On\" href=\"https:\/\/aws.amazon.com\/single-sign-on\/\">AWS Single Sign-On<\/a>\uc744 \uc0ac\uc6a9\ud568\uc73c\ub85c\uc368 <code>AWSAdministratorAccess<\/code> \uad8c\ud55c\uc774 \uc788\ub294 \uc0cc\ub4dc\ubc15\uc2a4 \uacc4\uc815\uc744 \uc0ac\uc6a9\ud558\uae30 \uc704\ud55c AWS \uc790\uaca9 \uc99d\uba85\uc744 \ubcf5\uc0ac\ud569\ub2c8\ub2e4. \ud130\ubbf8\ub110\uc5d0\uc11c \ud574\ub2f9 \uc790\uaca9 \uc99d\uba85\uc744 \uc0ac\uc6a9\ud558\ub3c4\ub85d \ud658\uacbd \ubcc0\uc218\ub97c \uc124\uc815\ud558\ub294 \uba85\ub839\uc744 \ubd99\uc5ec\ub123\uc2b5\ub2c8\ub2e4.<\/p>\n<p><a href=\"https:\/\/d2908q01vomqb2.cloudfront.net\/da4b9237bacccdf19c0760cab7aec4a8359010b0\/2021\/11\/18\/control-tower-sso-sandbox-account.png\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-large wp-image-57031\" src=\"https:\/\/d2908q01vomqb2.cloudfront.net\/da4b9237bacccdf19c0760cab7aec4a8359010b0\/2021\/11\/18\/control-tower-sso-sandbox-account-1024x649.png\" alt=\"\ucf58\uc194 \uc2a4\ud06c\ub9b0\uc0f7.\" width=\"1024\" height=\"649\"><\/a><\/p>\n<p>\uc774\uc81c \ube44\uad00\ub9ac \ub9ac\uc804 \uc911 \ud558\ub098\uc778 \ubbf8\uad6d \ub3d9\ubd80(\uc624\ud558\uc774\uc624)\uc5d0\uc11c \uc0c8\ub85c\uc6b4 <a href=\"https:\/\/aws.amazon.com\/ec2\/\">Amazon Elastic Compute Cloud(Amazon EC2)<\/a> \uc778\uc2a4\ud134\uc2a4\ub97c \uc2dc\uc791\ud558\ub824\uace0 \ud569\ub2c8\ub2e4. \ub79c\ub529 \uc874\uc5d0\uc11c <a href=\"https:\/\/docs.aws.amazon.com\/controltower\/latest\/userguide\/vpc-concepts.html\">\uae30\ubcf8 VPC\ub294 \u200b\u200bAWS Control Tower\uc5d0\uc11c \uad00\ub9ac\ud558\ub294 VPC\ub85c \ub300\uccb4\ub429\ub2c8\ub2e4<\/a>. \uc778\uc2a4\ud134\uc2a4\ub97c \uc2dc\uc791\ud558\ub824\uba74 VPC \uc11c\ube0c\ub137\uc744 \uc9c0\uc815\ud574\uc57c \ud569\ub2c8\ub2e4. \uc0ac\uc6a9\ud560 \uc218 \uc788\ub294 \uc11c\ube0c\ub137 ID\ub97c \ucc3e\uc544\ubcf4\uaca0\uc2b5\ub2c8\ub2e4.<\/p>\n<div class=\"hide-language\">\n<pre class=\"unlimited-height-code\"><code class=\"lang-bash\">aws ec2 describe-subnets --query 'Subnets[0].SubnetId' --region us-east-2\n\nAn error occurred (UnauthorizedOperation) when calling the DescribeSubnets operation:\nYou are not authorized to perform this operation.<\/code><\/pre>\n<\/div>\n<p>\uc608\uc0c1\ub300\ub85c \ubbf8\uad6d \ub3d9\ubd80(\uc624\ud558\uc774\uc624)\uc5d0\uc11c \uc774 \uc791\uc5c5\uc744 \uc218\ud589\ud560 \uad8c\ud55c\uc774 \uc5c6\uc2b5\ub2c8\ub2e4. \uc11c\ube0c\ub137 ID\ub97c \uc804\ub2ec\ud558\uc9c0 \uc54a\uace0 EC2 \uc778\uc2a4\ud134\uc2a4\ub97c \uc2dc\uc791\ud558\ub824\uace0 \ud574\ubcf4\uaca0\uc2b5\ub2c8\ub2e4.<\/p>\n<div class=\"hide-language\">\n<pre class=\"unlimited-height-code\"><code class=\"lang-bash\">aws ec2 run-instances --image-id ami-0dd0ccab7e2801812 --region us-east-2 \n    --instance-type t3.small&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp;\n\nAn error occurred (UnauthorizedOperation) when calling the RunInstances operation:\nYou are not authorized to perform this operation.\nEncoded authorization failure message: &lt;ENCODED MESSAGE&gt;<\/code><\/pre>\n<\/div>\n<p>\ub2e4\uc2dc \ub9d0\ud558\uc9c0\ub9cc, \uad8c\ud55c\uc774 \uc5c6\uc2b5\ub2c8\ub2e4. <a href=\"https:\/\/aws.amazon.com\/premiumsupport\/knowledge-center\/ec2-not-auth-launch\/\">\uc774 \ubb38\uc11c\uc5d0 \uc124\uba85\ub41c<\/a> \ub300\ub85c \ub514\ucf54\ub529\ud560 \uc218 \uc788\ub294 \uc778\ucf54\ub529\ub41c \uad8c\ud55c \ubd80\uc5ec \uc2e4\ud328 \uba54\uc2dc\uc9c0\uc5d0 \ucd94\uac00 \uc815\ubcf4\uac00 \ud3ec\ud568\ub418\uc5b4 \uc788\uc2b5\ub2c8\ub2e4.<\/p>\n<div class=\"hide-language\">\n<pre class=\"unlimited-height-code\"><code class=\"lang-bash\">aws sts decode-authorization-message --encoded-message &lt;ENCODED MESSAGE&gt;<\/code><\/pre>\n<\/div>\n<p>\ub514\ucf54\ub529\ub41c \uba54\uc2dc\uc9c0(\uac04\uacb0\ud568\uc744 \uc704\ud574 \uc0dd\ub7b5\ud568)\ub294 \uc694\uccad\uc5d0 \ub300\ud55c \uba85\uc2dc\uc801 \uac70\ubd80\uac00 \uc788\uc5c8\uc74c\uc744 \uc54c\ub824 \uc8fc\uba70 \uac70\ubd80\ub97c \uc57c\uae30\ud55c \uc804\uccb4 SCP\ub97c \ud3ec\ud568\ud558\uace0 \uc788\uc2b5\ub2c8\ub2e4. \uc774 \uc815\ubcf4\ub294 \uc774\ub7ec\ud55c \uc885\ub958\uc758 \uc624\ub958\ub97c \ub514\ubc84\uae45\ud558\ub294 \ub370 \ub9e4\uc6b0 \uc720\uc6a9\ud569\ub2c8\ub2e4.<\/p>\n<p>\uc774\uc81c \ub124 \uac1c\uc758 \uad00\ub9ac \ub9ac\uc804 \uc911 \ud558\ub098\uc778 \ubbf8\uad6d \ub3d9\ubd80(\ubc84\uc9c0\ub2c8\uc544 \ubd81\ubd80)\uc5d0\uc11c \uc2dc\ub3c4\ud574\ubcf4\uaca0\uc2b5\ub2c8\ub2e4.<\/p>\n<div class=\"hide-language\">\n<pre class=\"unlimited-height-code\"><code class=\"lang-bash\">aws ec2 describe-subnets --query 'Subnets[0].SubnetId' --region us-east-1\n\"subnet-0f3580c0c5e56c210\"<\/code><\/pre>\n<\/div>\n<p>\uc774\ubc88\uc5d0\ub294 \uba85\ub839\uc774 \uc694\uccad\uc5d0 \uc758\ud574 \ubc18\ud658\ub41c \uccab \ubc88\uc9f8 \uc11c\ube0c\ub137\uc758 \uc11c\ube0c\ub137 ID\ub97c \ubc18\ud658\ud569\ub2c8\ub2e4. \uc774 \uc11c\ube0c\ub137\uc744 \uc0ac\uc6a9\ud558\uc5ec \ubbf8\uad6d \ub3d9\ubd80(\ubc84\uc9c0\ub2c8\uc544 \ubd81\ubd80)\uc5d0\uc11c \uc778\uc2a4\ud134\uc2a4\ub97c \uc2dc\uc791\ud558\uaca0\uc2b5\ub2c8\ub2e4.<\/p>\n<div class=\"hide-language\">\n<pre class=\"unlimited-height-code\"><code class=\"lang-bash\">aws ec2 run-instances --image-id&nbsp; ami-04ad2567c9e3d7893 --region us-east-1 \n    --instance-type t3.small --subnet-id subnet-0f3580c0c5e56c210<\/code><\/pre>\n<\/div>\n<p>\uc608\uc0c1\ub300\ub85c \uc778\uc2a4\ud134\uc2a4\uac00 \uc791\ub3d9\ud558\uba70, \ucf58\uc194\uc5d0\uc11c \uc2e4\ud589 \uc911\uc778 EC2 \uc778\uc2a4\ud134\uc2a4\ub97c \ud655\uc778\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4.<\/p>\n<p><a href=\"https:\/\/d2908q01vomqb2.cloudfront.net\/da4b9237bacccdf19c0760cab7aec4a8359010b0\/2021\/11\/18\/control-tower-ec2-instance-running.png\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-large wp-image-57032\" src=\"https:\/\/d2908q01vomqb2.cloudfront.net\/da4b9237bacccdf19c0760cab7aec4a8359010b0\/2021\/11\/18\/control-tower-ec2-instance-running-1024x144.png\" alt=\"\ucf58\uc194 \uc2a4\ud06c\ub9b0\uc0f7.\" width=\"1024\" height=\"144\"><\/a><\/p>\n<p>\ub9c8\ucc2c\uac00\uc9c0\ub85c, \ub2e4\ub978 AWS \uc11c\ube44\uc2a4\uc6a9 API\ub294 \ub9ac\uc804 \uac70\ubd80 \uc124\uc815\uc5d0 \ub530\ub77c \uc81c\ud55c\ub429\ub2c8\ub2e4. \uc608\ub97c \ub4e4\uc5b4 \ube44\uad00\ub9ac \ub9ac\uc804\uc5d0\uc11c S3 \ubc84\ud0b7\uc744 \uc0dd\uc131\ud560 \uc218 \uc5c6\uc2b5\ub2c8\ub2e4.<\/p>\n<p><a href=\"https:\/\/d2908q01vomqb2.cloudfront.net\/da4b9237bacccdf19c0760cab7aec4a8359010b0\/2021\/11\/18\/control-tower-s3-create-not-governed.png\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-large wp-image-57033\" src=\"https:\/\/d2908q01vomqb2.cloudfront.net\/da4b9237bacccdf19c0760cab7aec4a8359010b0\/2021\/11\/18\/control-tower-s3-create-not-governed-1024x557.png\" alt=\"\ucf58\uc194 \uc2a4\ud06c\ub9b0\uc0f7.\" width=\"1024\" height=\"557\"><\/a><\/p>\n<p>\ubc84\ud0b7\uc744 \uc0dd\uc131\ud558\ub824\uace0 \ud558\uba74 \uc561\uc138\uc2a4 \uac70\ubd80 \uc624\ub958\uac00 \ubc1c\uc0dd\ud569\ub2c8\ub2e4.<\/p>\n<p><a href=\"https:\/\/d2908q01vomqb2.cloudfront.net\/da4b9237bacccdf19c0760cab7aec4a8359010b0\/2021\/11\/18\/control-tower-s3-access-denied.png\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-large wp-image-57034\" src=\"https:\/\/d2908q01vomqb2.cloudfront.net\/da4b9237bacccdf19c0760cab7aec4a8359010b0\/2021\/11\/18\/control-tower-s3-access-denied-1024x304.png\" alt=\"\ucf58\uc194 \uc2a4\ud06c\ub9b0\uc0f7.\" width=\"1024\" height=\"304\"><\/a><\/p>\n<p>\uc608\uc0c1\ub300\ub85c \uad00\ub9ac \ub9ac\uc804\uc5d0\uc11c\ub294 S3 \ubc84\ud0b7 \uc0dd\uc131\uc774 \uc791\ub3d9\ud569\ub2c8\ub2e4.<\/p>\n<p><a href=\"https:\/\/d2908q01vomqb2.cloudfront.net\/da4b9237bacccdf19c0760cab7aec4a8359010b0\/2021\/11\/18\/control-tower-s3-create-governed.png\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-large wp-image-57035\" src=\"https:\/\/d2908q01vomqb2.cloudfront.net\/da4b9237bacccdf19c0760cab7aec4a8359010b0\/2021\/11\/18\/control-tower-s3-create-governed-1024x233.png\" alt=\"\" width=\"1024\" height=\"233\"><\/a><\/p>\n<p>\ub204\uad70\uac00\uac00 \uc774 \uacc4\uc815\uc5d0 \ube44\uad00\ub9ac \ub9ac\uc804\uc758 \ubc84\ud0b7\uc5d0 \ub300\ud55c \uc561\uc138\uc2a4 \uad8c\ud55c\uc744 \ubd80\uc5ec\ud558\ub354\ub77c\ub3c4 \ud574\ub2f9 \ubc84\ud0b7\uc5d0 \uc5b4\ub5a0\ud55c \ub370\uc774\ud130\ub3c4 \ubcf5\uc0ac\ud560 \uc218 \uc5c6\uc2b5\ub2c8\ub2e4.<\/p>\n<p>\ub2e4\ub978 \uc608\ubc29 \uac00\ub4dc \ub808\uc77c\uc740 \ub370\uc774\ud130 \ub808\uc9c0\ub358\uc2dc\ub97c \uac15\ud654\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4. \uc608\ub97c \ub4e4\uba74 \ub2e4\uc74c\uacfc \uac19\uc2b5\ub2c8\ub2e4.<\/p>\n<ul>\n<li>Amazon EC2, Amazon CloudFront, AWS Global Accelerator\uc5d0 \ub300\ud55c \uad50\ucc28 \ub9ac\uc804 \ub124\ud2b8\uc6cc\ud0b9 \ud5c8\uc6a9 \uc548 \ud568<\/li>\n<li>\uace0\uac1d\uc774 \uad00\ub9ac\ud558\ub294 Amazon VPC \uc778\uc2a4\ud134\uc2a4\uc5d0 \ub300\ud55c \uc778\ud130\ub137 \uc561\uc138\uc2a4 \ud5c8\uc6a9 \uc548 \ud568<\/li>\n<li>Amazon \uac00\uc0c1 \uc0ac\uc124 \ub124\ud2b8\uc6cc\ud06c(VPN) \uc5f0\uacb0 \ud5c8\uc6a9 \uc548 \ud568<\/li>\n<\/ul>\n<p>\uc774\uc81c \ud0d0\uc9c0 \uac00\ub4dc \ub808\uc77c\uc774 \uc5b4\ub5bb\uac8c \uc791\ub3d9\ud558\ub294\uc9c0 \uc54c\uc544\ubcf4\uaca0\uc2b5\ub2c8\ub2e4.<\/p>\n<p><span style=\"text-decoration: underline\"><strong>\uc0cc\ub4dc\ubc15\uc2a4 \uacc4\uc815\uc5d0\uc11c \ud0d0\uc9c0 \uac00\ub4dc \ub808\uc77c \ud14c\uc2a4\ud2b8<\/strong><\/span><br \/> \uc0cc\ub4dc\ubc15\uc2a4 OU\uc758 \ubaa8\ub4e0 \uacc4\uc815\uc5d0 \ub300\ud574 \ub2e4\uc74c \uac00\ub4dc \ub808\uc77c\uc744 \uc0ac\uc6a9\ud558\ub3c4\ub85d \uc124\uc815\ud569\ub2c8\ub2e4.<\/p>\n<ul>\n<li>\ubaa8\ub4e0 AWS \uacc4\uc815\uc5d0\uc11c Amazon EBS \uc2a4\ub0c5\uc0f7\uc744 \ubcf5\uc6d0\ud560 \uc218 \uc788\ub294\uc9c0 \ud0d0\uc9c0<\/li>\n<li>\uc778\ud130\ub137 \uac8c\uc774\ud2b8\uc6e8\uc774\uc758 \ub77c\uc6b0\ud305 \ud14c\uc774\ube14\uc5d0 \ud37c\ube14\ub9ad \uacbd\ub85c\uac00 \uc788\ub294\uc9c0 \ud0d0\uc9c0<\/li>\n<\/ul>\n<p>\uc774\uc81c \uc774\ub7ec\ud55c \uac00\ub4dc \ub808\uc77c\uc5d0 \uc704\ubc30\ub418\uba74 \uc5b4\ub5bb\uac8c \ub418\ub294\uc9c0 \uc54c\uc544\ubcf4\ub824\uace0 \ud569\ub2c8\ub2e4. <a href=\"https:\/\/console.aws.amazon.com\/ec2\/\">EC2 \ucf58\uc194<\/a>\uc5d0\uc11c \uc774\uc804\uc5d0 \uc2dc\uc791\ud55c EC2 \uc778\uc2a4\ud134\uc2a4\uc758 \ubcfc\ub968\uc5d0 \ub300\ud55c EBS \uc2a4\ub0c5\uc0f7\uc744 \uc0dd\uc131\ud569\ub2c8\ub2e4. \uadf8\ub7f0 \ub2e4\uc74c, \ud574\ub2f9 \uc2a4\ub0c5\uc0f7\uc744 \ubaa8\ub4e0 AWS \uacc4\uc815\uacfc \uacf5\uc720\ud558\ub3c4\ub85d \uad8c\ud55c\uc744 \uc218\uc815\ud569\ub2c8\ub2e4.<\/p>\n<p><a href=\"https:\/\/d2908q01vomqb2.cloudfront.net\/da4b9237bacccdf19c0760cab7aec4a8359010b0\/2021\/11\/18\/control-tower-ebs-snaphot-public.png\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-large wp-image-57039\" src=\"https:\/\/d2908q01vomqb2.cloudfront.net\/da4b9237bacccdf19c0760cab7aec4a8359010b0\/2021\/11\/18\/control-tower-ebs-snaphot-public-1024x798.png\" alt=\"\ucf58\uc194 \uc2a4\ud06c\ub9b0\uc0f7.\" width=\"1024\" height=\"798\"><\/a><\/p>\n<p>\uadf8\ub7f0 \ub2e4\uc74c, <a href=\"https:\/\/console.aws.amazon.com\/vpc\">VPC \ucf58\uc194<\/a>\uc5d0\uc11c \uc778\ud130\ub137 \uac8c\uc774\ud2b8\uc6e8\uc774\ub97c \uc0dd\uc131\ud558\uc5ec AWS Control Tower \uad00\ub9ac\ud615 VPC\uc5d0 \uc5f0\uacb0\ud558\uace0 \ud504\ub77c\uc774\ube57 \uc11c\ube0c\ub137 \uc911 \ud558\ub098\uc758 \ub77c\uc6b0\ud305 \ud14c\uc774\ube14\uc744 \uc5c5\ub370\uc774\ud2b8\ud558\uc5ec \uc778\ud130\ub137 \uac8c\uc774\ud2b8\uc6e8\uc774\ub97c \uc0ac\uc6a9\ud558\ub3c4\ub85d \ud569\ub2c8\ub2e4.<\/p>\n<p><a href=\"https:\/\/d2908q01vomqb2.cloudfront.net\/da4b9237bacccdf19c0760cab7aec4a8359010b0\/2021\/11\/18\/control-tower-igw-route-table.png\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-large wp-image-57038\" src=\"https:\/\/d2908q01vomqb2.cloudfront.net\/da4b9237bacccdf19c0760cab7aec4a8359010b0\/2021\/11\/18\/control-tower-igw-route-table-1024x344.png\" alt=\"\ucf58\uc194 \uc2a4\ud06c\ub9b0\uc0f7.\" width=\"1024\" height=\"344\"><\/a><\/p>\n<p>\uba87 \ubd84 \ud6c4 \uc0cc\ub4dc\ubc15\uc2a4 \uacc4\uc815\uc758 \uaddc\uc815 \ubbf8\uc900\uc218 \ub9ac\uc18c\uc2a4\uac00 \ud0d0\uc9c0 \uac00\ub4dc \ub808\uc77c\uc5d0 \uc758\ud574 \ubc1c\uacac\ub429\ub2c8\ub2e4.<\/p>\n<p><a href=\"https:\/\/d2908q01vomqb2.cloudfront.net\/da4b9237bacccdf19c0760cab7aec4a8359010b0\/2021\/11\/18\/control-tower-noncompliant-resources.png\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-large wp-image-57040\" src=\"https:\/\/d2908q01vomqb2.cloudfront.net\/da4b9237bacccdf19c0760cab7aec4a8359010b0\/2021\/11\/18\/control-tower-noncompliant-resources-1024x408.png\" alt=\"\ucf58\uc194 \uc2a4\ud06c\ub9b0\uc0f7.\" width=\"1024\" height=\"408\"><\/a><\/p>\n<p>\uac00\ub4dc \ub808\uc77c\uc5d0\uc11c \uc81c\uacf5\ud55c \uc815\ubcf4\ub97c \uc0b4\ud3b4\ubcf4\uace0 \uad6c\uc131\uc744 \uc5c5\ub370\uc774\ud2b8\ud558\uc5ec \ubb38\uc81c\ub97c \uc218\uc815\ud569\ub2c8\ub2e4. \ub2e4\uc911 \uacc4\uc815 \uc124\uc815\uc5d0\uc11c\ub294 \uacc4\uc815 \uc18c\uc720\uc790\uc5d0\uac8c \uc5f0\ub77d\ud558\uc5ec \uc218\uc815\uc744 \uc694\uccad\ud569\ub2c8\ub2e4.<\/p>\n<p><span style=\"text-decoration: underline\"><strong>\uac00\uc6a9\uc131 \ubc0f \uc694\uae08<br \/> <\/strong><\/span>\ub370\uc774\ud130 \ub808\uc9c0\ub358\uc2dc \uac00\ub4dc \ub808\uc77c\uc744 \uc0ac\uc6a9\ud558\uc5ec AWS \ub9ac\uc804\uc758 \ub9ac\uc18c\uc2a4\ub97c \uc81c\uc5b4\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4. \ub79c\ub529 \uc874\uc744 \uc0dd\uc131\ud558\ub824\uba74 <a href=\"https:\/\/aws.amazon.com\/controltower\/\">AWS Control Tower<\/a>\uac00 \uc81c\uacf5\ub418\ub294 \ub9ac\uc804 \uc911 \ud558\ub098\uc5d0\uc11c \uc2dc\uc791\ud574\uc57c \ud569\ub2c8\ub2e4. \uc790\uc138\ud55c \ub0b4\uc6a9\uc740 <a href=\"https:\/\/aws.amazon.com\/about-aws\/global-infrastructure\/regional-product-services\/\">AWS \ub9ac\uc804 \uc11c\ube44\uc2a4 \ubaa9\ub85d<\/a>\uc744 \ucc38\uc870\ud558\uc138\uc694. \uc774 \uae30\ub2a5\uc5d0 \ub300\ud55c \ucd94\uac00 \ube44\uc6a9\uc740 \uc5c6\uc2b5\ub2c8\ub2e4. \uc0ac\uc6a9\ub41c \ub2e4\ub978 \uc11c\ube44\uc2a4(\uc608: <a href=\"https:\/\/aws.amazon.com\/config\/\">AWS Config<\/a>)\uc758 \ube44\uc6a9\uc744 \uc9c0\ubd88\ud558\uba74 \ub429\ub2c8\ub2e4.<\/p>\n<p>\uc774 \uae30\ub2a5\uc740 \ub370\uc774\ud130 \ub808\uc9c0\ub358\uc2dc \uc694\uad6c \uc0ac\ud56d\uc744 \ud574\uacb0\ud558\ub294 \ub2e4\uc911 \uacc4\uc815 \ud658\uacbd\uc744 \uc124\uc815\ud558\uae30 \uc704\ud55c \uc81c\uc5b4 \ud504\ub808\uc784\uc6cc\ud06c \ubc0f \uac00\uc774\ub4dc\ub97c \uc81c\uacf5\ud569\ub2c8\ub2e4. \uc0ac\uc6a9 \uc0ac\ub840\uc5d0 \ub530\ub77c \uc0c8\ub85c\uc6b4 \ub370\uc774\ud130 \ub808\uc9c0\ub358\uc2dc \uac00\ub4dc \ub808\uc77c\uc758 \ud558\uc704 \uc9d1\ud569\uc744 \uc0ac\uc6a9\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4.<\/p>\n<p><strong>AWS Control Tower\ub97c \uc0ac\uc6a9\ud558\uc5ec \ub370\uc774\ud130 \ub808\uc9c0\ub358\uc2dc \uc694\uad6c \uc0ac\ud56d\uc5d0 \ub530\ub77c <a href=\"https:\/\/docs.aws.amazon.com\/controltower\/latest\/userguide\/getting-started-with-control-tower.html\">\uac00\ub4dc \ub808\uc77c\uc744 \uc124\uc815<\/a>\ud558\uc138\uc694.<\/strong><\/p>\n<p>\u2014 <a title=\"Twitter\uc5d0\uc11c\uc758 Danilo\" href=\"https:\/\/twitter.com\/danilop\">Danilo<\/a><\/p>\n<p>Source: <a href=\"https:\/\/aws.amazon.com\/ko\/blogs\/korea\/new-for-aws-control-tower-region-deny-and-guardrails-to-help-you-meet-data-residency-requirements\/\" target=\"_blank\" rel=\"noopener\">AWS Control Tower \uc5c5\ub370\uc774\ud2b8 \u2014 \ub370\uc774\ud130 \ub808\uc9c0\ub358\uc2dc\ub97c \uc704\ud55c \ub9ac\uc804 \uac70\ubd80 \ubc0f \uac00\ub4dc \ub808\uc77c<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<div class=\"mh-excerpt\"><p>AWS Control Tower \uc5c5\ub370\uc774\ud2b8 \u2014 \ub370\uc774\ud130 \ub808\uc9c0\ub358\uc2dc\ub97c \uc704\ud55c \ub9ac\uc804 \uac70\ubd80 \ubc0f \uac00\ub4dc \ub808\uc77c \uaddc\uc81c\uac00 \uc5c4\uaca9\ud55c \uc0b0\uc5c5 \ubc0f \uacf5\uacf5 \ubd80\ubb38\uc758 \uace0\uac1d\uacfc \uac19\uc740 \ub9ce\uc740 \uace0\uac1d\uc740 \ub370\uc774\ud130\uac00 \uc800\uc7a5\ub418\uace0 \ucc98\ub9ac\ub418\ub294 \uc704\uce58\ub97c \uc81c\uc5b4\ud558\ub824\uace0 \ud569\ub2c8\ub2e4. AWS\ub294 \uc774\ubbf8 \ud604\uc9c0 \ubc95\ub960 \ubc0f \uaddc\uc815\uc744 \uc900\uc218\ud558\uae30 \uc704\ud55c \ub9ce\uc740 \ub3c4\uad6c\uc640 \uae30\ub2a5\uc744 \uc81c\uacf5\ud558\uace0 \uc788\uc9c0\ub9cc, \ub370\uc774\ud130 \ub808\uc9c0\ub358\uc2dc \uc694\uad6c \uc0ac\ud56d\uc744 \ub2e8\uc77c \ubc0f \ub2e4\uc911 \uacc4\uc815 \ud658\uacbd\uc5d0 \uc801\uc6a9\ud560 \uc218 \uc788\ub294 \uc81c\uc5b4 \uae30\ub2a5\uc73c\ub85c \ubcc0\ud658\ud558\ub294 \uac04\uc18c\ud654\ub41c \ubc29\ubc95\uc744 \uc81c\uacf5\ud558\ub824\uace0 \ud569\ub2c8\ub2e4. \uc624\ub298\ubd80\ud130 AWS Control Tower\ub97c \uc0ac\uc6a9\ud558\uc5ec \uac00\ub4dc \ub808\uc77c\uc774\ub77c\uace0 \ud558\ub294 \ub370\uc774\ud130 \ub808\uc9c0\ub358\uc2dc \uc608\ubc29 \ubc0f \ud0d0\uc9c0 \uc81c\uc5b4 \uae30\ub2a5\uc744 \ubc30\ud3ec\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4. \uc774\ub7ec\ud55c \uac00\ub4dc \ub808\uc77c\uc740 AWS Control Tower\uc5d0\uc11c \ube4c\ub4dc \ubc0f \uad00\ub9ac\ud558\ub294 \uc11c\ube44\uc2a4 \uc81c\uc5b4 \uc815\ucc45(SCP)\uc744 \ud1b5\ud574 AWS API\uc5d0 \ub300\ud55c \uc561\uc138\uc2a4\ub97c \uc81c\ud55c\ud568\uc73c\ub85c\uc368 \uc6d0\uce58 \uc54a\ub294 AWS \ub9ac\uc804\uc5d0 \ub9ac\uc18c\uc2a4\ub97c \ud504\ub85c\ube44\uc800\ub2dd\ud558\ub294 \uac83\uc744 \uc608\ubc29\ud569\ub2c8\ub2e4. \uc774\ub7ec\ud55c \ubc29\uc2dd\uc73c\ub85c \uc778\ud504\ub77c \uc218\uc900\uc5d0\uc11c \uc120\ud0dd\ud55c \ub9ac\uc804 \uc678\ubd80\uc5d0 \ucf58\ud150\uce20\ub97c \uc0dd\uc131\ud558\uac70\ub098 \ub9ac\uc804 \uc678\ubd80\ub85c \ucf58\ud150\uce20\ub97c \uc804\uc1a1\ud560 \uc218 \uc5c6\uc2b5\ub2c8\ub2e4. \uc774 \ub9e5\ub77d\uc5d0\uc11c \ucf58\ud150\uce20\ub294 \ucc98\ub9ac \ub610\ub294 \uc800\uc7a5\uc744 \uc704\ud574 AWS\uc5d0 \ud638\uc2a4\ud2b8\ub418\ub294 \uc18c\ud504\ud2b8\uc6e8\uc5b4(\uba38\uc2e0 \uc774\ubbf8\uc9c0 \ud3ec\ud568), \ub370\uc774\ud130, \ud14d\uc2a4\ud2b8, \uc624\ub514\uc624, \ube44\ub514\uc624 \ub610\ub294 \uc774\ubbf8\uc9c0\uc77c \uc218 \uc788\uc2b5\ub2c8\ub2e4. <a class=\"mh-excerpt-more\" href=\"https:\/\/jirak.net\/wp\/aws-control-tower-%ec%97%85%eb%8d%b0%ec%9d%b4%ed%8a%b8-%eb%8d%b0%ec%9d%b4%ed%84%b0-%eb%a0%88%ec%a7%80%eb%8d%98%ec%8b%9c%eb%a5%bc-%ec%9c%84%ed%95%9c-%eb%a6%ac%ec%a0%84-%ea%b1%b0%eb%b6%80\/\" title=\"AWS Control Tower \uc5c5\ub370\uc774\ud2b8 \u2014 \ub370\uc774\ud130 \ub808\uc9c0\ub358\uc2dc\ub97c \uc704\ud55c \ub9ac\uc804 \uac70\ubd80 \ubc0f \uac00\ub4dc \ub808\uc77c\">[ more&#8230; ]<\/a><\/p>\n<\/div>","protected":false},"author":1,"featured_media":44363,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[169],"tags":[656],"class_list":["post-44362","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news","tag-aws"],"amp_enabled":true,"_links":{"self":[{"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/posts\/44362","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/comments?post=44362"}],"version-history":[{"count":1,"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/posts\/44362\/revisions"}],"predecessor-version":[{"id":44364,"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/posts\/44362\/revisions\/44364"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/media\/44363"}],"wp:attachment":[{"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/media?parent=44362"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/categories?post=44362"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/tags?post=44362"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}