SAP-C02 第 11 题
题目
A company has many AWS accounts and uses AWS Organizations to manage all of them. A solutions architect must implement a solution that the company can use to share a common network across multiple accounts. The company’s infrastructure team has a dedicated infrastructure account that has a VPC. The infrastructure team must use this account to manage the network. Individual accounts cannot have the ability to manage their own networks. However, individual accounts must be able to create AWS resources within subnets. Which combination of actions should the solutions architect perform to meet these requirements? (Choose two.)
中文翻译:
一家公司拥有许多 AWS 账户,并使用 AWS Organizations 来管理所有账户。解决方案架构师必须实施一个解决方案,公司可以使用该解决方案在多个帐户之间共享公共网络。该公司的基础设施团队有一个拥有 VPC 的专用基础设施账户。基础设施团队必须使用此帐户来管理网络。个人帐户无法管理自己的网络。但是,个人账户必须能够在子网内创建 AWS 资源。解决方案架构师应该执行哪些操作组合来满足这些要求? (选择两个。)
选项
A. Create a transit gateway in the infrastructure account.
中文翻译:
在基础设施帐户中创建中转网关。
B. Enable resource sharing from the AWS Organizations management account.
中文翻译:
从 AWS Organizations 管理账户启用资源共享。
C. Create VPCs in each AWS account within the organization in AWS Organizations. Configure the VPCs to share the same CIDR range and subnets as the VPC in the infrastructure account. Peer the VPCs in each individual account with the VPC in the infrastructure account.
中文翻译:
在 AWS Organizations 的组织内的每个 AWS 账户中创建 VPC。将 VPC 配置为与基础设施账户中的 VPC 共享相同的 CIDR 范围和子网。将每个单独账户中的 VPC 与基础设施账户中的 VPC 对等。
D. Create a resource share in AWS Resource Access Manager in the infrastructure account. Select the specific AWS Organizations OU that will use the shared network. Select each subnet to associate with the resource share.
中文翻译:
在基础设施账户的 AWS Resource Access Manager 中创建资源共享。选择将使用共享网络的特定 AWS Organizations OU。选择与资源共享关联的每个子网。
E. Create a resource share in AWS Resource Access Manager in the infrastructure account. Select the specific AWS Organizations OU that will use the shared network. Select each prefix list to associate with the resource share.
中文翻译:
在基础设施账户的 AWS Resource Access Manager 中创建资源共享。选择将使用共享网络的特定 AWS Organizations OU。选择与资源共享关联的每个前缀列表。
答案
BD
解析
正确答案:BD 解析: 本题应选择 BD。 正确选项: B. 从 AWS Organizations 管理账户启用资源共享。 D. 在基础设施账户的 AWS Resource Access Manager 中创建资源共享。选择将使用共享网络的特定 AWS Organizations OU。选择与资源共享关联的每个子网。 选择理由: 该选项最直接地满足题干中的关键约束。做 SAP-C02 题目时,需要同时对照题干里的限定词,例如最高性能、...