AWS Certified Solutions Architect - Professional

Get started today

Ultimate access to all questions.

Quick Answer

Answer-first summary for fast verification

Answer: Implement an AWS Resource Access Manager (AWS RAM) resource share for the DB cluster, enabling sharing of the DB cluster with all development accounts.

Option A is the correct answer because it leverages AWS Resource Access Manager (AWS RAM) to share the Amazon Aurora DB cluster with all development accounts. This approach is the least operationally intensive because it directly shares the resource without needing to set up additional infrastructure like transit gateways or VPN connections. Options B, C, and D involve more complex configurations and ongoing maintenance, which increase operational overhead. Therefore, using AWS RAM to share the DB cluster effectively meets the requirement of providing connectivity with minimum operational burden.

Author: LeetQuiz Editorial Team

Quick Answer

Answer-first summary for fast verification

Answer: Implement an AWS Resource Access Manager (AWS RAM) resource share for the DB cluster, enabling sharing of the DB cluster with all development accounts.

Author: LeetQuiz Editorial Team

Comments (0)

No comments yet.

A company utilizes AWS Organizations to manage its development environment, where each development team has its own AWS account with a non-overlapping CIDR block in a single VPC. The company maintains an Amazon Aurora DB cluster in a shared services account, and all development teams require access to live data from this cluster. What is the most operationally efficient solution to provide connectivity to the DB cluster for all development accounts?

Exam-Like

Last updated: January 8, 2026 at 14:03

Implement an AWS Resource Access Manager (AWS RAM) resource share for the DB cluster, enabling sharing of the DB cluster with all development accounts.

58.3%

Establish a transit gateway in the shared services account, followed by an AWS Resource Access Manager (AWS RAM) resource share for the transit gateway. Share the transit gateway with all development accounts, instructing developers to accept the resource share and configure networking accordingly.

16.7%

Deploy an Application Load Balancer (ALB) targeting the IP address of the DB cluster, and create an AWS PrivateLink endpoint service utilizing the ALB. Grant permissions to each development account to connect to the endpoint service.

16.7%

Set up an AWS Site-to-Site VPN connection in the shared services account, configure networking, and utilize AWS Marketplace VPN software in each development account to establish a connection to the Site-to-Site VPN.