ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Solutions Architect - Professional All Questions

View all questions & answers for the AWS Certified Solutions Architect - Professional exam
Go to Exam

Exam AWS Certified Solutions Architect - Professional topic 1 question 854 discussion

Exam question from Amazon's AWS Certified Solutions Architect - Professional
Question #: 854
Topic #: 1
[All AWS Certified Solutions Architect - Professional Questions]

A company has many AWS accounts and uses AWS Organizations to manage all of them. A solutions architect must implement a solution that the company can use to share a common network across multiple accounts.
The company's infrastructure team has a dedicated infrastructure account that has a VPC. The infrastructure team must use this account to manage the network.
Individual accounts cannot have the ability to manage their own networks. However, individual accounts must be able to create AWS resources within subnets.
Which combination of actions should the solutions architect perform to meet these requirements? (Choose two.)

  • A. Create a transit gateway in the infrastructure account.
  • B. Enable resource sharing from the AWS Organizations management account.
  • C. Create VPCs in each AWS account within the organization in AWS Organizations. Configure the VPCs to share the same CIDR range and subnets as the VPC in the infrastructure account. Peer the VPCs in each individual account with the VPC in the infrastructure account.
  • D. Create a resource share in AWS Resource Access Manager in the infrastructure account. Select the specific AWS Organizations OU that will use the shared network. Select each subnet to associate with the resource share.
  • E. Create a resource share in AWS Resource Access Manager in the infrastructure account. Select the specific AWS Organizations OU that will use the shared network. Select each prefix list to associate with the resource share.
Show Suggested Answer Hide Answer
Suggested Answer: BD 🗳️
by snakecharmer2 at April 20, 2022, 4 p.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Bigbearcn
Highly Voted 3 years ago
Selected Answer: BD
It's B and D.
upvoted 10 times
...
snakecharmer2
Highly Voted 3 years ago
Selected Answer: BD
B & D You want to share the subnets using RAM (D) and you need to enable it first (B)
upvoted 7 times
...
onepunchfinish
Most Recent 12 months ago
Choose BD Sharing at the subnet level will allow the operations account to share specific subnets with other AWS accounts in the organization. By using AWS Resource Access Manager, the operations team can maintain centralised control over network resources while enabling individual accounts to deploy AWS resources within the shared subnets
upvoted 1 times
...
DavidC
1 year, 6 months ago
Selected Answer: BE
key word: Individual accounts cannot have the ability to manage their own networks. that means the individual accounts do not have their own subnet and rely on the resource sharing to provide subnet. prefix list is the way to go
upvoted 1 times
...
shailurtm2001
3 years ago
BE https://docs.aws.amazon.com/vpc/latest/userguide/sharing-managed-prefix-lists.html
upvoted 2 times
...
mirnuj_atom
3 years ago
B/D, the prefix-list has nothing to do with the subnet sharing.
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago