Q30 — AWS SAP-C02 Ch.1
Question 30 of 75 | ← Chapter 1
Q105. A company that has multiple AWS accounts is using AWS Organizations. The company's AWS accounts host VPCs,Amazon EC2instances, and containers.The company's compliance team has deployed a security tool in each VPC where the company has deployments. The security tools run on EC2instances and send information to the AWS account that is dedicated for the compliance team. The company has tagged all the compliance-related resources with a key of "costCenter" and a value of "compliance.",The company wants to identify the cost of the security tools that are running on the EC2 instances so that the company can charge the compliance team's AWS account. The costcalculation must be as accurate as possible.What should a solutions architect do to meet these requirements?
- A. In the management account of the organization, activate the costCenter user-defined tag. Configure monthly AWS Cost and Usage Reports to save to an Amazon S3 bucket in the management account.Use the tag breakdown in the report to obtain the total cost for the costCenter tagged resources. ✓
- B. In the member accounts of the organization, activate the costCenter user-defined tag. Configure monthly AWS Costand Usage Reports to save to an Amazon S3 bucket in the management account.Schedule a monthly AWS Lambda function to retrieve the reports and calculate the total costfor the costCenter tagged resources.
- C. In the member accounts of the organization, activate the costCenter user-defined tag. From the management account, schedule a monthly AWS Cost and Usage Report. Use the tag breakdown in the report to calculate the total cost for the costCenter tagged resources.
- D. Create a custom report in the organization view in AWS Trusted Advisor. Configure the report to generate a monthly billing summary for the costCenter tagged resources in the compliance team's AWS account.
Correct Answer: A. In the management account of the organization, activate the costCenter user-defined tag. Configure monthly AWS Cost and Usage Reports to save to an Amazon S3 bucket in the management account.Use the tag breakdown in the report to obtain the total cost for the costCenter tagged resources.
Explanation
To meet the requirements, the solutions architect should activate the "costCenter" user-defined tag in the management account of the AWS Organizations. Then, configure monthly AWS Cost and Usage Reports to be saved in an Amazon S3 bucket in the management account.By enabling the user-defined tag and configuring the cost and usage reports, the architect would be able to obtain a detailed breakdown of costs based on the tags used. Specifically, they can use the "costCenter" tag to filter and identify the cost of the security tools running on EC2 instances. This allows for accurate cost calculation for the compliance team's AWS account.Option B is not the best choice because it suggests scheduling a monthly AWS Lambda function in member accounts to retrieve and calculate costs from the reports. It adds unnecessary complexity compared to using AWS Cost and Usage Reports directly.Option C is also not the best choice because it suggests scheduling a monthly AWS Cost and Usage Report from the management account, which may not provide the necessary granularity needed for accurate cost calculation.Option D is incorrect because AWS Trusted Advisor does not provide the capability to generate custom reports specifically for cost breakdowns based on user-defined tags.为了满足需求,解决方案架构师应该在AWS组织的管理帐户中激活“costCenter”用户定义标签。然后,将每月的AWS成本和使用情况报告配置为保存在管理帐户的Amazon S3桶中。 通过启用用户定义的标签并配置成本和使用报告,架构师将能够根据所使用的标签获得详细的成本分解。具体来说,他们可以使用“costCenter”标签来过滤和识别运行在EC2实例上的安全工具的成本。这允许对合规团队的AWS账户进行准确的成本计算。 选项B不是最佳选择,因为它建议在会员帐户中安排每月一次的AWS Lambda函数,以便从报告中检索和计算成本。与直接使用AWS成本和使用报告相比,它增加了不必要的复杂性。 选项C也不是最佳选择,因为它建议从管理帐户安排每月的AWS成本和使用报告,这可能无法提供准确成本计算所需的必要粒度。 选项D是不正确的,因为AWS Trusted Advisor不提供专门为基于用户定义标记的成本细分生成自定义报告的功能。