Answer-first summary for fast verification
Answer: Utilize AWS Resource Access Manager from the management account to share the transit gateway with member accounts., Deploy an AWS CloudFormation stack set from the management account to automatically generate a new VPC and a VPC transit gateway attachment in member accounts, associating it with the transit gateway in the management account using its ID.
Option A, which suggests using AWS Resource Access Manager from the management account to share the transit gateway with member accounts, is correct because AWS RAM allows the sharing of AWS resources with other AWS accounts within the same organization. Option C, which involves deploying an AWS CloudFormation stack set from the management account to automatically create a new VPC and a VPC transit gateway attachment in member accounts, and associating it with the transit gateway using its ID, is also correct. This approach ensures automation of the required resources each time a new member account is added, thereby meeting the company's need for efficiency and reducing operational effort.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
No comments yet.
A company with 50 AWS accounts within an AWS Organization seeks to interconnect VPCs across these accounts using AWS Transit Gateway. They aim to automate the creation of a new VPC and a corresponding transit gateway attachment whenever a new member account is added. Which two actions will achieve this automation?
A
Utilize AWS Resource Access Manager from the management account to share the transit gateway with member accounts.
B
Employ AWS Organizations SCP from the management account to share the transit gateway with member accounts.
C
Deploy an AWS CloudFormation stack set from the management account to automatically generate a new VPC and a VPC transit gateway attachment in member accounts, associating it with the transit gateway in the management account using its ID.
D
Initiate an AWS CloudFormation stack set from the management account to automatically generate a new VPC and a peering transit gateway attachment in member accounts, sharing it with the transit gateway in the management account via a transit gateway service-linked role.
E
Use AWS Service Catalog from the management account to share the transit gateway with member accounts.