ExpertEasy1 markMultiple Choice
AWS SAP-C02 · Question 19 · Domain 1.4: Multi-Account Environment
An organization wants to share a central AWS Transit Gateway and Amazon Route 53 Resolver rules across 50 AWS accounts. What is the MOST efficient way to manage this sharing?
An organization wants to share a central AWS Transit Gateway and Amazon Route 53 Resolver rules across 50 AWS accounts. What is the MOST efficient way to manage this sharing?
Answer options:
A.
Create IAM cross-account roles in the central account for each of the 50 member accounts.
B.
Use AWS Resource Access Manager (RAM) to share the resources with the entire AWS Organization.
C.
Configure VPC peering from the central account to all 50 member accounts.
D.
Use AWS Service Catalog to provision the resources in each account.
How to approach this question
Identify the AWS service specifically designed for sharing resources across accounts.
Full Answer
B.Use AWS Resource Access Manager (RAM) to share the resources with the entire AWS Organization.✓ Correct
Use AWS Resource Access Manager (RAM) to share the resources with the entire AWS Organization.
AWS Resource Access Manager (RAM) is the standard service for sharing specific AWS resources across accounts within an AWS Organization.
Common mistakes
Confusing IAM cross-account roles with resource sharing.
Practice the full AWS Solutions Architect Professional SAP-C02 Practice Exam 1
75 questions · hints · full answers · grading
More questions from this exam
Q01An enterprise has 50 VPCs across two AWS Regions. They need to establish transitive routing betwe...HardQ02A company uses AWS Organizations. The security team wants to ensure that no IAM user or role can ...MediumQ03An application requires a relational database with an RPO of 1 second and an RTO of less than 1 m...HardQ04A company is setting up a new multi-account environment. They want to automate the provisioning o...MediumQ05An organization wants to allocate AWS costs to specific business units. They use AWS Organization...Hard