SAP-C02 · Question #395
SAP-C02 Question #395: Real Exam Question with Answer & Explanation
The correct answer is C: Create a new IAM policy. Specify the instance types that are allowed. Attach the policy to an IAM. This is doable with IAM policy creation to restrict users to specific instance types. Found the https://blog.vizuri.com/limiting-allowed-aws-instance-type-with-iam-policy
Question
A large mobile gaming company has successfully migrated all of its on-premises infrastructure to the AWS Cloud. A solutions architect is reviewing the environment to ensure that it was built according to the design and that it is running in alignment with the Well-Architected Framework. While reviewing previous monthly costs in Cost Explorer, the solutions architect notices that the creation and subsequent termination of several large instance types account for a high proportion of the costs. The solutions architect finds out that the company's developers are launching new Amazon EC2 instances as part of their testing and that the developers are not using the appropriate instance types. The solutions architect must implement a control mechanism to limit the instance types that only the developers can launch. Which solution will meet these requirements?
Options
- ACreate a desired-instance-type managed rule in AWS Config. Configure the rule with the instance
- BIn the EC2 console, create a launch template that specifies the instance types that are allowed.
- CCreate a new IAM policy. Specify the instance types that are allowed. Attach the policy to an IAM
- DUse EC2 Image Builder to create an image pipeline for the developers and assist them in the
Explanation
This is doable with IAM policy creation to restrict users to specific instance types. Found the https://blog.vizuri.com/limiting-allowed-aws-instance-type-with-iam-policy
Community Discussion
No community discussion yet for this question.