AWS Certified Security - Specialty
Get started today
Ultimate access to all questions.
Ultimate access to all questions.
A company utilizes AWS Organizations to manage various AWS accounts for different departments including human resources, finance, software development, and production. All developers are part of the software development AWS account. Recently, the company identified that developers have initiated Amazon EC2 instances preloaded with unapproved software. To address this, the company seeks a solution that ensures developers can only launch EC2 instances with approved software within the software development AWS account. Which of the following solutions would effectively meet this requirement?
Explanation:
The correct answer is C. AWS Service Catalog allows you to create and manage catalogs of IT services that are approved for use on AWS, including specific AMIs with pre-approved software. By using a Service Catalog portfolio, the company can ensure that developers in the software development AWS account only have access to launch EC2 instances with the approved software. This solution is effective because it limits the available options to only those products in the catalog, thereby preventing the use of unapproved software.