Updated on 2024-05-24 GMT+08:00

Features

Before using RGC, you are advised to learn basic concepts about account factory and governance policies so you have a better understanding of the functions provided by RGC.

Automated Environment Deployment

You can use RGC to automatically set up a multi-account landing zone following best practices. In your landing zone, you will have one management account and two core accounts (an audit account and a log archive account). Also you are provided with organization-wide single sign-on access as well as centralized logging and auditing capabilities.

Account Factory

In the account factory, you can create member accounts under a specified organizational unit (OU), and baseline configurations will be automatically applied to your accounts based on best practices.

Governance Policies

You can flexibly select scenario-specific compliance packages and enable preventive and detective governance policies to meet enterprise compliance requirements.

Preventive Governance Policies

Preventive governance policies explicitly deny certain actions from being taken. Such policies are implemented by service control policies (SCPs).

Detective Governance Policies

Detective governance policies identify non-compliant resource configurations and inform you of such resources when they are discovered. Such policies are implemented by Config rules.

Customized Account Provisioning

RGC provides a framework for flexible account customization. When you create a member account or select an existing member account, you can use a custom IaC template to create custom account configurations.

Dashboard

You can monitor governance policies, organization-level resource compliance, and organizational structure in real time, as well as monitor the compliance status of your landing zone.