Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
exam questions

Exam AWS Certified Solutions Architect - Professional SAP-C02 All Questions

View all questions & answers for the AWS Certified Solutions Architect - Professional SAP-C02 exam

Exam AWS Certified Solutions Architect - Professional SAP-C02 topic 1 question 38 discussion

A company is using AWS Organizations to manage multiple AWS accounts. For security purposes, the company requires the creation of an Amazon Simple Notification Service (Amazon SNS) topic that enables integration with a third-party alerting system in all the Organizations member accounts.
A solutions architect used an AWS CloudFormation template to create the SNS topic and stack sets to automate the deployment of CloudFormation stacks. Trusted access has been enabled in Organizations.
What should the solutions architect do to deploy the CloudFormation StackSets in all AWS accounts?

  • A. Create a stack set in the Organizations member accounts. Use service-managed permissions. Set deployment options to deploy to an organization. Use CloudFormation StackSets drift detection.
  • B. Create stacks in the Organizations member accounts. Use self-service permissions. Set deployment options to deploy to an organization. Enable the CloudFormation StackSets automatic deployment.
  • C. Create a stack set in the Organizations management account. Use service-managed permissions. Set deployment options to deploy to the organization. Enable CloudFormation StackSets automatic deployment.
  • D. Create stacks in the Organizations management account. Use service-managed permissions. Set deployment options to deploy to the organization. Enable CloudFormation StackSets drift detection.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
masetromain
Highly Voted 1 year, 10 months ago
Selected Answer: C
The best solution is C, because it involves creating the stack set in the management account of the organization, which is the central point of control for all the member accounts. This allows the solutions architect to manage the deployment of the stack set across all member accounts from a single location. Service-managed permissions are used, which allows the CloudFormation service to deploy the stack set to all member accounts. The deployment options are set to deploy to the organization and automatic deployment is enabled, which ensures that the stack set is automatically deployed to all member accounts as soon as it is created in the management account.
upvoted 19 times
...
masetromain
Highly Voted 1 year, 11 months ago
Selected Answer: C
https://www.examtopics.com/discussions/amazon/view/47723-exam-aws-certified-solutions-architect-professional-topic-1/
upvoted 5 times
...
amministrazione
Most Recent 2 months, 3 weeks ago
C. Create a stack set in the Organizations management account. Use service-managed permissions. Set deployment options to deploy to the organization. Enable CloudFormation StackSets automatic deployment.
upvoted 1 times
...
Vaibs099
9 months, 3 weeks ago
C. Create a stack set in the Organizations management account. Use service-managed permissions. Set deployment options to deploy to the organization. Enable CloudFormation StackSets automatic deployment. C is more suitable as Enable CloudFormation StackSets automatic deployment will take care of any new account in the Org. Set deployment options to deploy to the organization helps deploying Stack Instances to targeted account in Org. Use service-managed permissions is hassle free as it takes care or roles for you. D. Create stacks in the Organizations management account. Use service-managed permissions. Set deployment options to deploy to the organization. Enable CloudFormation StackSets drift detection. D is good option too as StackSets drift detection is a good option to have but not a requirement. It only saves from future troubleshooting of drift scenarios.
upvoted 1 times
...
nharaz
10 months ago
Selected Answer: C
D is wrong - Drift Detection identifies unmanaged changes (Outside CloudFormation)
upvoted 2 times
...
jainparag1
12 months ago
Selected Answer: C
I'll go with C since it satisfies all the requirements with minimum operational overhead. But wondering if "Stack Sets drift detection" is just a distractor here. Can someone throw some light on this?
upvoted 2 times
ninomfr64
11 months ago
I am not an expert, just sharing my thoughts: "Stack Sets drift detection" is a feature of stack set, however this is not needed according to the scenario. https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stacksets-drift.html. D is a no-go for me because it deploys in each managed account without making use of stack sets, so you cannot then use stack sets drift detection.
upvoted 1 times
...
...
daz2023
1 year, 1 month ago
Selected Answer: C
C is the right answer
upvoted 1 times
...
NikkyDicky
1 year, 4 months ago
Selected Answer: C
C no brainer
upvoted 1 times
...
mfsec
1 year, 7 months ago
Selected Answer: C
Create a stack set in the Organizations management account.
upvoted 2 times
...
spd
1 year, 9 months ago
Selected Answer: C
Stack Set in Mgmt account
upvoted 2 times
...
Atila50
1 year, 11 months ago
I THINK I SHOULD BE A
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...