ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Solutions Architect - Professional SAP-C02 All Questions

View all questions & answers for the AWS Certified Solutions Architect - Professional SAP-C02 exam
Go to Exam

Exam AWS Certified Solutions Architect - Professional SAP-C02 topic 1 question 38 discussion

Exam question from Amazon's AWS Certified Solutions Architect - Professional SAP-C02
Question #: 38
Topic #: 1
[All AWS Certified Solutions Architect - Professional SAP-C02 Questions]

A company is using AWS Organizations to manage multiple AWS accounts. For security purposes, the company requires the creation of an Amazon Simple Notification Service (Amazon SNS) topic that enables integration with a third-party alerting system in all the Organizations member accounts.
A solutions architect used an AWS CloudFormation template to create the SNS topic and stack sets to automate the deployment of CloudFormation stacks. Trusted access has been enabled in Organizations.
What should the solutions architect do to deploy the CloudFormation StackSets in all AWS accounts?

  • A. Create a stack set in the Organizations member accounts. Use service-managed permissions. Set deployment options to deploy to an organization. Use CloudFormation StackSets drift detection.
  • B. Create stacks in the Organizations member accounts. Use self-service permissions. Set deployment options to deploy to an organization. Enable the CloudFormation StackSets automatic deployment.
  • C. Create a stack set in the Organizations management account. Use service-managed permissions. Set deployment options to deploy to the organization. Enable CloudFormation StackSets automatic deployment.
  • D. Create stacks in the Organizations management account. Use service-managed permissions. Set deployment options to deploy to the organization. Enable CloudFormation StackSets drift detection.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by masetromain at Dec. 13, 2022, 7:26 p.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
masetromain
Highly Voted 2 years, 1 month ago
Selected Answer: C
The best solution is C, because it involves creating the stack set in the management account of the organization, which is the central point of control for all the member accounts. This allows the solutions architect to manage the deployment of the stack set across all member accounts from a single location. Service-managed permissions are used, which allows the CloudFormation service to deploy the stack set to all member accounts. The deployment options are set to deploy to the organization and automatic deployment is enabled, which ensures that the stack set is automatically deployed to all member accounts as soon as it is created in the management account.
upvoted 19 times
...
masetromain
Highly Voted 2 years, 2 months ago
Selected Answer: C
https://www.examtopics.com/discussions/amazon/view/47723-exam-aws-certified-solutions-architect-professional-topic-1/
upvoted 5 times
...
amministrazione
Most Recent 5 months, 3 weeks ago
C. Create a stack set in the Organizations management account. Use service-managed permissions. Set deployment options to deploy to the organization. Enable CloudFormation StackSets automatic deployment.
upvoted 1 times
...
Vaibs099
1 year ago
C. Create a stack set in the Organizations management account. Use service-managed permissions. Set deployment options to deploy to the organization. Enable CloudFormation StackSets automatic deployment. C is more suitable as Enable CloudFormation StackSets automatic deployment will take care of any new account in the Org. Set deployment options to deploy to the organization helps deploying Stack Instances to targeted account in Org. Use service-managed permissions is hassle free as it takes care or roles for you. D. Create stacks in the Organizations management account. Use service-managed permissions. Set deployment options to deploy to the organization. Enable CloudFormation StackSets drift detection. D is good option too as StackSets drift detection is a good option to have but not a requirement. It only saves from future troubleshooting of drift scenarios.
upvoted 1 times
...
nharaz
1 year ago
Selected Answer: C
D is wrong - Drift Detection identifies unmanaged changes (Outside CloudFormation)
upvoted 2 times
...
jainparag1
1 year, 2 months ago
Selected Answer: C
I'll go with C since it satisfies all the requirements with minimum operational overhead. But wondering if "Stack Sets drift detection" is just a distractor here. Can someone throw some light on this?
upvoted 2 times
ninomfr64
1 year, 2 months ago
I am not an expert, just sharing my thoughts: "Stack Sets drift detection" is a feature of stack set, however this is not needed according to the scenario. https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stacksets-drift.html. D is a no-go for me because it deploys in each managed account without making use of stack sets, so you cannot then use stack sets drift detection.
upvoted 1 times
...
...
daz2023
1 year, 4 months ago
Selected Answer: C
C is the right answer
upvoted 1 times
...
NikkyDicky
1 year, 7 months ago
Selected Answer: C
C no brainer
upvoted 1 times
...
mfsec
1 year, 10 months ago
Selected Answer: C
Create a stack set in the Organizations management account.
upvoted 2 times
...
spd
2 years ago
Selected Answer: C
Stack Set in Mgmt account
upvoted 2 times
...
Atila50
2 years, 2 months ago
I THINK I SHOULD BE A
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago