Which service helps monitor compliance across AWS Organizations?

Sharpen your skills for the AWS Certified Solutions Architect Professional Exam. Dive into flashcards, multiple choice questions, each with detailed explanations and hints. Perfect your knowledge and get ready to ace the AWS exam!

Multiple Choice

Which service helps monitor compliance across AWS Organizations?

Explanation:
Monitoring compliance across multiple AWS accounts in an Organization is best achieved with AWS Config. AWS Config continuously evaluates resource configurations against defined rules and can be centralized across accounts and regions using an aggregator. By enabling Config in member accounts and wiring up an aggregator in the management account, you can see a single, unified view of compliance status for all resources across the entire Organization. You can implement AWS Config Rules or Conformance Packs to enforce policy requirements—such as ensuring S3 buckets are encrypted, IAM roles have least privilege, or certain network configurations are in place—and have those evaluations reported centrally. Other options don’t fit this requirement as well. AWS Health Dashboard focuses on service health events and incident notices rather than your resource configurations or policy compliance. AWS License Manager tracks software licenses usage, not configuration compliance across accounts. The AWS Management Console is just the user interface for AWS services, not a compliance monitoring solution.

Monitoring compliance across multiple AWS accounts in an Organization is best achieved with AWS Config. AWS Config continuously evaluates resource configurations against defined rules and can be centralized across accounts and regions using an aggregator. By enabling Config in member accounts and wiring up an aggregator in the management account, you can see a single, unified view of compliance status for all resources across the entire Organization. You can implement AWS Config Rules or Conformance Packs to enforce policy requirements—such as ensuring S3 buckets are encrypted, IAM roles have least privilege, or certain network configurations are in place—and have those evaluations reported centrally.

Other options don’t fit this requirement as well. AWS Health Dashboard focuses on service health events and incident notices rather than your resource configurations or policy compliance. AWS License Manager tracks software licenses usage, not configuration compliance across accounts. The AWS Management Console is just the user interface for AWS services, not a compliance monitoring solution.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy