Topic 1 Question 163

AWS Certified DevOps Engineer - Professional

Topic 1 Question 163
A company has an AWS Control Tower landing zone that manages its organization in AWS Organizations. The company created an OU structure that is based on the company's requirements. The company's DevOps team has established the core accounts for the solution and an account for all centralized AWS CloudFormation and AWS Service Catalog solutions.

The company wants to offer a series of customizations that an account can request through AWS Control Tower.

Which combination of steps will meet these requirements?

3 つ選択
- Enable trusted access for CloudFormation with Organizations by using service-managed permissions.
- Create an IAM role that is named AWSControlTowerBlueprintAccess. Configure the role with a trust policy that allows the AWSControlTowerAdmin role in the management account to assume the role. Attach the AWSServiceCatalogAdminFullAccess IAM policy to the AWSControlTowerBlueprintAccess role.
- Create a Service Catalog product for each CloudFormation template.
- Create a CloudFormation stack set for each CloudFormation template. Enable automatic deployment for each stack set. Create a CloudFormation stack instance that targets specific OUs.
- Deploy the Customizations for AWS Control Tower (CfCT) CloudFormation stack.
- Create a CloudFormation template that contains the resources for each customization.
ユーザの投票
コメント(3)
- 正解だと思う選択肢: BCF
  https://docs.aws.amazon.com/controltower/latest/userguide/afc-setup-steps.html
  
  👍 2
  d262e672023/12/31
- 正解だと思う選択肢: BCF
  https://docs.aws.amazon.com/controltower/latest/userguide/afc-setup-steps.html
  
  👍 1
  kabary2024/01/01
- 正解だと思う選択肢: BCF
  answer BCF
  
  👍 1
  yuliaqwerty2024/01/12
シャッフルモード

ユーザの投票

コメント(3)