ExpertAWS SAP-C02 · Question 21 · Domain 2.1: Deployment Strategy
A development team uses AWS CDK to define their infrastructure. They need to deploy the infrastructure across three different AWS accounts (Dev, Test, Prod) from a central CI/CD account. How should they configure the permissions for this cross-account deployment?
A development team uses AWS CDK to define their infrastructure. They need to deploy the infrastructure across three different AWS accounts (Dev, Test, Prod) from a central CI/CD account. How should they configure the permissions for this cross-account deployment?
Answer options:
Create IAM users in each target account and store their access keys in the central account's Secrets Manager.
Bootstrap the target accounts trusting the central account, and use CDK pipelines to assume the deployment roles in the target accounts.
Use AWS Resource Access Manager (RAM) to share the CDK stacks with the target accounts.
Deploy the CDK stacks manually in each account using the AWS Management Console.
How to approach this question
Full Answer
Common mistakes
Practice the full AWS Solutions Architect Professional SAP-C02 Practice Exam 1
75 questions · hints · full answers · grading