Answer-first summary for fast verification
Answer: By organizing accounts into OUs within AWS Organizations and attaching a service control policy to limit EC2 instance types.
The correct answer is B. AWS Organizations allows you to manage multiple AWS accounts centrally. By organizing the accounts into Organizational Units (OUs) and attaching a Service Control Policy (SCP), you can control the types of EC2 instances that can be created across all accounts. This method requires less development effort compared to creating and managing custom AWS Systems Manager templates, configuring Amazon EventBridge rules with AWS Lambda functions, or setting up AWS Service Catalog products.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
How can a company centrally restrict the creation of oversized AWS resources in multiple development accounts with minimal development effort?
A
By developing and using AWS Systems Manager templates for an approved EC2 instance creation process.
B
By organizing accounts into OUs within AWS Organizations and attaching a service control policy to limit EC2 instance types.
C
By setting up an Amazon EventBridge rule to trigger an AWS Lambda function that stops the creation of disallowed EC2 instance types.
D
By creating AWS Service Catalog products for allowed EC2 instance types and restricting staff to use only these products for deployment.
No comments yet.