Topic 1 Question 451
A company uses AWS CloudFormation to deploy its infrastructure. The company recently retired an application. A cloud operations engineer initiates CloudFormation stack deletion, and the stack gets stuck in DELETE_FAILED status.
A SysOps administrator discovers that the stack had deployed a security group. The security group is referenced by other security groups in the environment. The SysOps administrator needs to delete the stack without affecting other applications.
Which solution will meet these requirements in the MOST operationally efficient manner?
Create a new security group that has a different name. Apply identical rules to the new security group. Replace all other security groups that reference the new security group Delete the stack.
Create a CloudFormation change set to delete the security group. Deploy the change set.
Delete the stack again. Specify that the security group be retained.
Perform CloudFormation drift detection. Delete the stack.
ユーザの投票
コメント(3)
- 正解だと思う選択肢: C
Option B is incorrect because Change Sets allow you to see how your proposed changes might impact your running resources before implementing them, it will not prevent the error when deleting the stack. Option D is incorrect because Drift Detection identifies stack resources whose actual configuration differs from their template, it does not allow the SG to be retained when deleting the stack. Option A works, but is extremely inefficient. Option C is correct. E.G. using the CLI command $ aws cloudformation delete-stack --stack-name my-stack --retain-resources mysg1 https://repost.aws/knowledge-center/cloudformation-stack-delete-failed
👍 6vaa20202024/08/12 - 正解だと思う選択肢: A
Answer is A
👍 1aragon_saa2024/08/12 - 正解だと思う選択肢: C
Def. option C here..
👍 1Aamee2024/10/26
シャッフルモード