SCS-C02 · Question #423
SCS-C02 Question #423: Real Exam Question with Answer & Explanation
The correct answer is D: Use AWS Service Catalog with CloudFormation to manage access to approved architecture. AWS Service Catalog allows the company to centrally manage and deploy approved architecture patterns through portfolios, ensuring that only predefined, compliant configurations are used. This solution enforces consistency in deployments across accounts. Additionally, AWS Config r
Question
A company needs to securely deploy resources and workloads across AWS accounts. The accounts are in an organization in AWS Organizations. The company needs to use AWS CloudFormation for infrastructure as code (IaC) management of approved architectural patterns. The company also must enforce tagging requirements and specific guidelines for resource and workload configuration and creation. Which solution will meet these requirements?
Options
- AUse CloudFormation stack policies to prevent the creation of resources that do not meet the
- BUse an AWS CodePipeline pipeline to test and deploy IaC defined workloads through
- CCreate an IAM permissions boundary to prevent the creation of misconfigured resources through
- DUse AWS Service Catalog with CloudFormation to manage access to approved architecture
Explanation
AWS Service Catalog allows the company to centrally manage and deploy approved architecture patterns through portfolios, ensuring that only predefined, compliant configurations are used. This solution enforces consistency in deployments across accounts. Additionally, AWS Config rules can be used to ensure compliance with tagging and configuration requirements, providing a comprehensive governance model for enforcing policies and standards across the organization.
Community Discussion
No community discussion yet for this question.