Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Solutions Architect - Associate SAA-C03 All Questions

View all questions & answers for the AWS Certified Solutions Architect - Associate SAA-C03 exam
Go to Exam

Exam AWS Certified Solutions Architect - Associate SAA-C03 topic 1 question 560 discussion

Exam question from Amazon's AWS Certified Solutions Architect - Associate SAA-C03
Question #: 560
Topic #: 1
[All AWS Certified Solutions Architect - Associate SAA-C03 Questions]

A company's solutions architect is designing an AWS multi-account solution that uses AWS Organizations. The solutions architect has organized the company's accounts into organizational units (OUs).

The solutions architect needs a solution that will identify any changes to the OU hierarchy. The solution also needs to notify the company's operations team of any changes.

Which solution will meet these requirements with the LEAST operational overhead?

  • A. Provision the AWS accounts by using AWS Control Tower. Use account drift notifications to identify the changes to the OU hierarchy.
  • B. Provision the AWS accounts by using AWS Control Tower. Use AWS Config aggregated rules to identify the changes to the OU hierarchy.
  • C. Use AWS Service Catalog to create accounts in Organizations. Use an AWS CloudTrail organization trail to identify the changes to the OU hierarchy.
  • D. Use AWS CloudFormation templates to create accounts in Organizations. Use the drift detection operation on a stack to identify the changes to the OU hierarchy.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by Bmaster at Aug. 2, 2023, 2:17 a.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Submit Cancel
Guru4Cloud
Highly Voted 1 year, 3 months ago
Selected Answer: A
The key advantages you highlight of Control Tower are convincing: Fully managed service simplifies multi-account setup. Built-in account drift notifications detect OU changes automatically. More scalable and less complex than Config rules or CloudTrail. Better security and compliance guardrails than custom options. Lower operational overhead compared to other solution
upvoted 10 times
...
Bmaster
Highly Voted 1 year, 3 months ago
A is correct. https://docs.aws.amazon.com/controltower/latest/userguide/what-is-control-tower.html https://docs.aws.amazon.com/controltower/latest/userguide/prevention-and-notification.html
upvoted 7 times
...
1166ae3
Most Recent 4 months, 3 weeks ago
Selected Answer: C
Create Accounts using AWS Service Catalog: Utilize AWS Service Catalog to provision AWS accounts within AWS Organizations. This ensures standardized account creation and management. Enable AWS CloudTrail Organization Trail: Set up an AWS CloudTrail organization trail that records all API calls across all accounts in the organization. This trail will capture changes to the OU hierarchy, including any modifications to organizational units.
upvoted 1 times
...
chickenmf
8 months, 1 week ago
Selected Answer: B
AWS Config helps you maintain a detailed inventory of your resources and their configurations, track changes over time, and ensure compliance with your organization's policies and industry regulations.
upvoted 2 times
chickenmf
8 months, 1 week ago
Furthermore, AWS Config Aggregated Rules are a feature within AWS Config that enables you to evaluate compliance with desired configurations or compliance standards across multiple AWS accounts and regions. They are particularly useful in scenarios where you want to enforce consistent rules and compliance checks across an entire organization with multiple AWS accounts.
upvoted 1 times
chickenmf
8 months, 1 week ago
NVM - This is such a stupid question lol changing my answer to A due to the following: Account drift notifications in AWS are a feature provided by AWS Control Tower. These notifications help organizations identify and respond to changes made to an AWS account that deviate from the established baseline configuration created during the initial setup by AWS Control Tower. Drift refers to any configuration changes that have been made to an AWS account after it was provisioned by Control Tower.
upvoted 3 times
...
...
...
Avyay
8 months, 2 weeks ago
This was in my exam today..I selected Answer A
upvoted 2 times
chickenmf
8 months, 1 week ago
what percentage of all these questions would you say were in the exam?
upvoted 1 times
wizcloudifa
6 months, 3 weeks ago
I read in one of the earlier questions, its around 75%, someone who gave the exam said so
upvoted 1 times
...
...
...
SHAAHIBHUSHANAWS
11 months, 3 weeks ago
A https://docs.aws.amazon.com/controltower/latest/userguide/drift.html
upvoted 1 times
...
potomac
1 year ago
Selected Answer: A
AWS Control Tower provides passive and active methods of drift monitoring protection for preventive controls.
upvoted 1 times
...
darekw
1 year, 3 months ago
https://docs.aws.amazon.com/controltower/latest/userguide/prevention-and-notification.html
upvoted 1 times
...

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel