Topic 1 Question 560

AWS Certified Solutions Architect - Associate

Topic 1 Question 560
A company's solutions architect is designing an AWS multi-account solution that uses AWS Organizations. The solutions architect has organized the company's accounts into organizational units (OUs).

The solutions architect needs a solution that will identify any changes to the OU hierarchy. The solution also needs to notify the company's operations team of any changes.

Which solution will meet these requirements with the LEAST operational overhead?
- Provision the AWS accounts by using AWS Control Tower. Use account drift notifications to identify the changes to the OU hierarchy.
- Provision the AWS accounts by using AWS Control Tower. Use AWS Config aggregated rules to identify the changes to the OU hierarchy.
- Use AWS Service Catalog to create accounts in Organizations. Use an AWS CloudTrail organization trail to identify the changes to the OU hierarchy.
- Use AWS CloudFormation templates to create accounts in Organizations. Use the drift detection operation on a stack to identify the changes to the OU hierarchy.
ユーザの投票
コメント(5)
- 正解だと思う選択肢: A
  The key advantages you highlight of Control Tower are convincing:
  
  Fully managed service simplifies multi-account setup. Built-in account drift notifications detect OU changes automatically. More scalable and less complex than Config rules or CloudTrail. Better security and compliance guardrails than custom options. Lower operational overhead compared to other solution
  
  👍 8
  Guru4Cloud2023/08/21
- A is correct.
  
  https://docs.aws.amazon.com/controltower/latest/userguide/what-is-control-tower.html https://docs.aws.amazon.com/controltower/latest/userguide/prevention-and-notification.html
  
  👍 5
  Bmaster2023/08/01
- https://docs.aws.amazon.com/controltower/latest/userguide/prevention-and-notification.html
  
  👍 1
  darekw2023/08/23
シャッフルモード

ユーザの投票

コメント(5)