Answer-first summary for fast verification
Answer: Enable resource sharing from the AWS Organizations management account., Create a resource share in AWS Resource Access Manager from the infrastructure account, targeting the specific AWS Organizations OU that will use the shared network, and include each subnet in the resource share.
Option B, 'Enable resource sharing from the AWS Organizations management account,' is necessary because it permits the organization to share resources across different AWS accounts. Option D, 'Create a resource share in AWS Resource Access Manager in the infrastructure account. Select the specific AWS Organizations OU that will use the shared network. Select each subnet to associate with the resource share,' is also required. This allows the infrastructure account to share specific subnets with other accounts in the organization, enabling those accounts to create resources within the shared subnets without the need to manage their own networks.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
No comments yet.
A company utilizes multiple AWS accounts managed through AWS Organizations. The company's infrastructure team has a dedicated account with a VPC, tasked with network management. Individual accounts are restricted from managing their own networks but must be able to deploy AWS resources within shared subnets. What two actions should the solutions architect take to facilitate this network sharing across accounts?
A
Create a transit gateway in the infrastructure account.
B
Enable resource sharing from the AWS Organizations management account.
C
Create VPCs in each AWS account within the organization. Configure these VPCs to use the same CIDR range and subnets as the infrastructure account's VPC, and peer them with the infrastructure account's VPC.
D
Create a resource share in AWS Resource Access Manager from the infrastructure account, targeting the specific AWS Organizations OU that will use the shared network, and include each subnet in the resource share.
E
Create a resource share in AWS Resource Access Manager from the infrastructure account, targeting the specific AWS Organizations OU that will use the shared network, and include each prefix list in the resource share.