Topic 1 Question 86
A company wants to prohibit its developers from using a particular family of Amazon EC2 instances. The company uses AWS Organizations and wants to apply the restriction across multiple accounts. What is the MOST operationally efficient way for the company to apply service control policies (SCPs) to meet these requirements?
Add the accounts to an organizational unit (OU). Apply the SCPs to the OU.
Add the accounts to resource groups in AWS Resource Groups. Apply the SCPs to the resource groups.
Apply the SCPs to each developer account
Enroll the accounts with AWS Control Tower. Apply the SCPs to the AWS Control Tower management account.
ユーザの投票
コメント(5)
- 正解だと思う選択肢: A
Question says Most Operationally Efficient. If they do not already use CT it adds another layer of complexity. They will still need to create OU's for the Developers anyway.
👍 6Kinetix2022/10/04 - 正解だと思う選択肢: A👍 5princajen2022/09/01
- 正解だと思う選択肢: A
Ans: A Cause it's the most efficient
👍 3Liongeek2022/11/17
シャッフルモード