ANS-C01 · Question #296
ANS-C01 Question #296: Real Exam Question with Answer & Explanation
Sign in or unlock ANS-C01 to reveal the answer and full explanation for question #296. The question stem and answer options stay visible for context.
Question
A company operates in multiple AWS Regions. The company has deployed transit gateways in each Region. The company uses AWS Organizations to operate multiple AWS accounts in one organization. The company needs to capture all VPC flow log data when a new VPC is created. The company needs to send flow logs to a specific Amazon S3 bucket. Which solution will meet these requirements with the LEAST administrative effort?
Options
- AUpdate IAM permissions for each user to include a condition that ensures users can create VPCs
- BCreate a custom AWS Config rule with automatic remediation that verifies VPC Flow Logs is
- CEnable VPC Flow Logs on each transit gateway. Configure VPC Flow Logs to send flow logs to the
- DDeploy a serverless application that uses AWS CloudTrail to monitor for VPC creation events in
Unlock ANS-C01 to see the answer
You've previewed enough free ANS-C01 questions. Unlock ANS-C01 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.