What do techies feel about Account Factory for Ter...
# terraformy
yogs
11/29/2024, 9:28 AMWhat do techies feel about Account Factory for Terraform AFT??
Do ppl use them aggressively??
m
Mujahid Hemani
12/02/2024, 2:16 AMi dont understand why one would use that
r
Regan Manning
12/03/2024, 3:28 PMControl tower is a trap. Don't use it for anything related to infrastructure, just accounts/iam/policies
y
yogs
12/03/2024, 4:01 PMHow do you manage multiple accounts then??
GUI??
r
Regan Manning
12/03/2024, 4:01 PMManage what specifically?
Regan Manning
12/03/2024, 4:02 PMYou can use it to bootstrap the accounts but I'm just recommending to manage the infrastructure in a more distributed way
Regan Manning
12/03/2024, 4:02 PMSince when you run the ATF it applies everything across the board and you will have insane conflicts and issues
Regan Manning
12/03/2024, 4:04 PMBasically you want to stack up your TF deployments to import the state of the ATF stuff and run a deployment per account+region. Things like Terragrunt help solve this or just TF enterprise
y
yogs
12/03/2024, 4:22 PMI did noticed conflicts
I am not sure how good it is to use for multiple accounts
When it comes to apply dozens of policies you can use AFT.
yogs
12/03/2024, 4:23 PMTerragrunt bit confusing to me TBH
r
Regan Manning
12/03/2024, 4:47 PMgonna be honest, creating a workflow to manage multiple aws accounts worth of resources is always gonna be confusing. You can do it though! Just find what you like
j
Josh Padnick
12/04/2024, 2:58 AMHello, membrer of Gruntwork here. We maintain Terragrunt and also build an alternative to AFT which uses plain old OpenTofu/Terragrunt code to manage all your accounts.
If you’re looking for help with Terragrunt, we have a Discord server where you can chat directly with our team to get help. There’s also a great course on KodeKloud.com.