Answer-first summary for fast verification
Answer: In the organization's management account, employ AWS Resource Access Manager (AWS RAM) to share the Cost and Usage Report data exclusively with each member account.
Option A is the correct answer. By using AWS Resource Access Manager (AWS RAM) to share the Cost and Usage Report data with each member account from the organization's management account, you can achieve the desired goal with the least operational complexity. AWS RAM allows resource sharing across accounts within an AWS Organization, ensuring that each business unit can access only its own cost and utilization data. This approach avoids the need for additional S3 events, Lambda functions, or complex S3 bucket policies, unlike the other options, and eliminates the overhead of setting up and managing separate Cost and Usage Reports for each account.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
No comments yet.
A company with multiple business units utilizes AWS Organizations with all features enabled. Each business unit operates under its own AWS account. Administrators in these accounts require access to detailed cost and utilization data specific to their account, utilizing Amazon Athena. The IAM policies governing AWS Cost and Usage Reports setup are already in place. A comprehensive Cost and Usage Report for the entire organization is stored in an Amazon S3 bucket. What solution offers the least operational complexity while ensuring each business unit can only access its own cost and utilization data?
A
In the organization's management account, employ AWS Resource Access Manager (AWS RAM) to share the Cost and Usage Report data exclusively with each member account.
B
In the organization's management account, set up an S3 event to trigger an AWS Lambda function upon the arrival of a new file in the central Cost and Usage Report S3 bucket. Configure the Lambda function to segregate and store each member account’s data under a unique prefix in Amazon S3, and adjust the S3 bucket policy to permit each member account access to its respective prefix.
C
Within each member account, utilize AWS Cost Explorer to generate a new report containing pertinent cost information for that account. Save this report in Cost Explorer and instruct account administrators on how to access it.
D
In each member account, establish a new S3 bucket dedicated to storing Cost and Usage Report data. Configure a Cost and Usage Report to direct the data to this new S3 bucket.