For AI agents: A markdown version of this page is available at https://docs.datadoghq.com/ddsql_reference/data_directory/aws/aws.controltower_enabled_control.dataset.md. A documentation index is available at /llms.txt.

Control Tower Enabled Control

An AWS Control Tower Enabled Control represents a governance rule that has been activated within a landing zone. It shows which controls are currently enforced on accounts or organizational units, helping ensure compliance with best practices and organizational policies.

aws.controltower_enabled_control

Fields

TitleIDTypeData TypeDescription
_keycorestring
account_idcorestring
arncorestringThe ARN of the enabled control.
control_identifiercorestringThe controlIdentifier of the enabled control.
drift_status_summarycorejsonThe drift status of the enabled control.
status_summarycorejsonA short description of the status of the enabled control.
tagscorehstore_csv
target_identifiercorestringThe ARN of the organizational unit.