A company created a new organization in AWS Organizations. The organization has multiple accounts for the company's development teams. The development team members use AWS IAM Identity Center (AWS Single Sign-On) to access the accounts. For each of the company's applications, the development teams must use a predefined application name to tag resources that are created. A solutions architect needs to design a solution that gives the development team the ability to create resources only if the application name tag has an approved value. Which solution will meet these requirements? A. Create an IAM group that has a conditional Allow policy that requires the application name tag to be specified for resources to be created. B. Create a cross-account role that has a Deny policy for any resource that has the application name tag. C. Create a resource group in AWS Resource Groups to validate that the tags are applied to all resources in all accounts. D. Create a tag policy in Organizations that has a list of allowed application names. Â Suggested Answer: D Community Answer: D This question is in SAA-C03 exam For getting AWS Certified Solutions Architect Associate Certificate Disclaimers: The website is not related to, affiliated with, endorsed or authorized by Amazon. Trademarks, certification & product names are used for reference only and belong to Amazon. The website does not contain actual questions and answers from Amazon's Certification Exam.
Please login or Register to submit your answer