We discussed Terraform as a solution for setting up AWS Landing Zones. They are secure, multi-account portals that enable customers to quickly set up workspaces for a cloud enabled remote workforce.
The ability for users to set up their working environments and accounts is essential, especially during the current COVID-19 pandemic situation. Given all the possibilities and design options available on AWS, setting up the ideal environment for your users can be time-consuming. So AWS Landing Zones come in handy in such instances by automating the set up of your environment and setting up the core accounts and resources, while taking care of the initial security baseline. Identity and Access Management (IAM), data security, logging, and much more can be automated in this manner.
The best part about AWS Landing Zones is that they deploy AWS Account Vending Machine (AVM). These are portals for creating, provisioning, and automatically configuring new remote worker accounts based on a pre-defined security baseline. It allows customers to manage user accounts and Organizational Units (OU).
AWS Landing Zones also provides additional security features like centralized logging, AWS CloudTrail for auditing, and Cross-Account Access from security accounts to user accounts.