Exam ANS-C00 All Questions

View all questions & answers for the ANS-C00 exam

Exam ANS-C00 topic 1 question 67 discussion

Exam question from Amazon's ANS-C00

Question #: 67
Topic #: 1

An organization has three AWS accounts with each containing VPCs in Virginia, Canada and the Sydney regions. The organization wants to determine whether all available Elastic IP addresses (EIPs) in these accounts are attached to Amazon EC2 instances or in use elastic network interfaces (ENIs) in all of the specified regions for compliance and cost-optimization purposes.
Which of the following meets the requirements with the LEAST management overhead?

A. Use an Amazon CloudWatch Events rule to schedule an AWS Lambda function in each account in all three regions to find the unattached and unused EIPs.
B. Use a CloudWatch event bus to schedule Lambda functions in each account in all three regions to find the unattached and unused EIPs.
C. Add an AWS managed, EIP-attached AWS Config rule in each region in all three accounts to find unattached and unused EIPs.
D. Use AWS CloudFormation StackSets to deploy an AWS Config EIP-attached rule in all accounts and regions to find the unattached and unused EIPs.

Show Suggested Answer

Suggested Answer: C 🗳️

by TarunB at Oct. 15, 2019, 1:51 p.m.

Disclaimers:

- ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
- Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Submit Cancel

andyo

Highly Voted 3 years, 7 months ago

D is answer - same as C but Least management overhead A stack set lets you create stacks in AWS accounts across regions by using a single AWS CloudFormation template. All the resources included in each stack are defined by the stack set's AWS CloudFormation template. As you create the stack set, you specify the template to use, as well as any parameters and capabilities that template requires.

upvoted 23 times

Johnny_Green

3 years, 7 months ago

I agree. D is a better answer. The following link provides a list of AWS Config Managed Rules: https://docs.aws.amazon.com/config/latest/developerguide/managed-rules-by-aws-config.html

upvoted 5 times

ciao

3 years, 5 months ago

https://docs.aws.amazon.com/config/latest/developerguide/eip-attached.html

upvoted 2 times

...

TarunB

Highly Voted 3 years, 8 months ago

for me it is C

upvoted 7 times

...

PacoDerek

Most Recent 2 years, 10 months ago

D check this out:https://aws.amazon.com/blogs/mt/managing-aws-organizations-accounts-using-aws-config-and-aws-cloudformation-stacksets/

upvoted 1 times

PacoDerek

2 years, 10 months ago

https://aws.amazon.com/blogs/mt/managing-aws-organizations-accounts-using-aws-config-and-aws-cloudformation-stacksets/ correct link , forget the previous one

upvoted 1 times

...

clooudy

3 years ago

Selected Answer: D

Answer D

upvoted 1 times

...

ChauPhan

3 years, 6 months ago

Agree with D https://docs.aws.amazon.com/config/latest/developerguide/eip-attached.html Checked the last lines AWS CloudFormation template To create AWS Config managed rules with AWS CloudFormation templates, see Creating AWS Config Managed Rules With AWS CloudFormation Templates. C is OK, but you need to do it one by one for each account. The demand is LEAST management.

upvoted 3 times

...

jvndmt

3 years, 7 months ago

Ans - C Checks whether all Elastic IP addresses that are allocated to an AWS account are attached to EC2 instances or in-use elastic network interfaces (ENIs). https://docs.aws.amazon.com/config/latest/developerguide/eip-attached.html

upvoted 1 times

walkwolf3

3 years, 6 months ago

The link indicated D.

upvoted 1 times

...

student2020

3 years, 7 months ago

C and D are the same. For 3 accounts and 3 regions, C is better from a management point of view to maintain just one AWS Config rule. If there were more accounts, it would be worth the effort of doing it with a CloudFormation stack set.

upvoted 2 times

sapien45

3 years, 2 months ago

For 1 account in one region, C is fine For several accounts, several regions, CF StackSets would result in less effort D

upvoted 2 times

...

CloudArchitect

3 years, 7 months ago

D https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stacksets-concepts.html

upvoted 1 times

...

Smartphone

3 years, 7 months ago

D seems correct answer. AWS CloudFormation StackSets extends the functionality of stacks by enabling you to create, update, or delete stacks across multiple accounts and regions with a single operation. Using an administrator account, you define and manage an AWS CloudFormation template, and use the template as the basis for provisioning stacks into selected target accounts across specified regions. Checks whether all Elastic IP addresses that are allocated to a VPC are attached to EC2 instances or in-use elastic network interfaces (ENIs).

upvoted 2 times