Answer-first summary for fast verification
Answer: Use AWS CloudFormation StackSets from the management account to deploy the template in each of the accounts.
AWS CloudFormation StackSets extends the functionality of stacks by enabling you to create, update, or delete stacks across multiple accounts and AWS Regions with a single operation. Integrating StackSets with AWS Organizations allows you to centrally manage deployments across accounts with the least operational overhead.
Author: Ritesh Yadav
Ultimate access to all questions.
Question #31 A CloudOps engineer has successfully deployed a VPC with an AWS CloudFormation template. The CloudOps engineer wants to deploy the same template across multiple accounts that are managed through AWS Organizations. Which solution will meet this requirement with the LEAST operational overhead?
A
Assume the OrganizationAccountAccessRole IAM role from the management account. Deploy the template in each of the accounts.
B
Create an AWS Lambda function to assume a role in each account. Deploy the template by using the AWS CloudFormation CreateStack API call.
C
Create an AWS Lambda function to query for a list of accounts. Deploy the template by using the AWS CloudFormation CreateStack API call.
D
Use AWS CloudFormation StackSets from the management account to deploy the template in each of the accounts.
No comments yet.