Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Solutions Architect - Associate SAA-C03 All Questions

View all questions & answers for the AWS Certified Solutions Architect - Associate SAA-C03 exam
Go to Exam

Exam AWS Certified Solutions Architect - Associate SAA-C03 topic 1 question 893 discussion

Exam question from Amazon's AWS Certified Solutions Architect - Associate SAA-C03
Question #: 893
Topic #: 1
[All AWS Certified Solutions Architect - Associate SAA-C03 Questions]

A company wants to isolate its workloads by creating an AWS account for each workload. The company needs a solution that centrally manages networking components for the workloads. The solution also must create accounts with automatic security controls (guardrails).

Which solution will meet these requirements with the LEAST operational overhead?

  • A. Use AWS Control Tower to deploy accounts. Create a networking account that has a VPC with private subnets and public subnets. Use AWS Resource Access Manager (AWS RAM) to share the subnets with the workload accounts.
  • B. Use AWS Organizations to deploy accounts. Create a networking account that has a VPC with private subnets and public subnets. Use AWS Resource Access Manager (AWS RAM) to share the subnets with the workload accounts.
  • C. Use AWS Control Tower to deploy accounts. Deploy a VPC in each workload account. Configure each VPC to route through an inspection VPC by using a transit gateway attachment.
  • D. Use AWS Organizations to deploy accounts. Deploy a VPC in each workload account. Configure each VPC to route through an inspection VPC by using a transit gateway attachment.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by 1223d0e at April 29, 2024, 7:43 p.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Submit Cancel
bujuman
Highly Voted 5 months, 3 weeks ago
Selected Answer: A
Statement: - The solution also must create accounts with automatic security controls (guardrails). https://docs.aws.amazon.com/controltower/latest/userguide/what-is-control-tower.html AWS Control Tower provides a pre-packaged set of guardrails (policies) and blueprints (best-practice configurations) to ensure that the environment complies with security and compliance standards. It’s designed to simplify the process of creating and managing a multi-account AWS environment while maintaining security and compliance.
upvoted 7 times
...
sandordini
Highly Voted 6 months, 3 weeks ago
Selected Answer: B
It's a hard one. I'd go for B Several accounts in an org, with central mgmt > AWS Organization Sharing resources among accounts > AWS RAM AWS Organizations and RAM typically work well together... Happy to be challenged, of course.
upvoted 6 times
sandordini
6 months, 3 weeks ago
Although automatic security control could be a hint for AWS Control Tower (set up and operate your multi-account AWS environment with prescriptive controls)
upvoted 1 times
...
...
mk168898
Most Recent 4 weeks, 1 day ago
guard rails => AWS control tower
upvoted 1 times
...
XXXXXlNN
1 month, 1 week ago
A Guardrails >> AWS Control Tower
upvoted 2 times
...
dhewa
3 months ago
Selected Answer: A
AWS Control Tower provides built-in guardrails and automates the creation of accounts with security controls.
upvoted 1 times
...
muhammadahmer36
4 months, 1 week ago
Selected Answer: A
A. Use AWS Control Tower to deploy accounts. Create a networking account that has a VPC with private subnets and public subnets. Use AWS Resource Access Manager (AWS RAM) to share the subnets with the workload accounts.
upvoted 1 times
...
emakid
4 months, 3 weeks ago
Selected Answer: A
It leverages AWS Control Tower for automated account deployment and management, along with AWS RAM for centralized networking management, thus minimizing operational overhead while meeting the company's requirements for workload isolation and automatic security controls.
upvoted 2 times
...
stalk98
5 months, 3 weeks ago
Selected Answer: A
answer is A
upvoted 1 times
...
Tomrr
6 months ago
Selected Answer: A
Anser is A, Control Tower has guardrails AWS Audit Manager provides an AWS Control Tower Guardrails framework to assist you with your audit preparation.
upvoted 1 times
...
Scheldon
6 months ago
Selected Answer: A
Taking into consideration that AWS Control Tower is Orchestrator for AWS Organization which applies guardrails, I think A is a good choose. https://docs.aws.amazon.com/controltower/latest/userguide/what-is-control-tower.html
upvoted 2 times
...
1223d0e
6 months, 3 weeks ago
Please explain why the answer is option A
upvoted 1 times
jackey_feng
6 months, 1 week ago
I prefer B which is free. A may cause fee for sevice used while I am not sure about it.
upvoted 1 times
...
...

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel