AWS Certified Advanced Networking – Specialty (ANS-C01) — Question 257

AnyCompany deploys and manages networking resources in its AWS network account, named Account-A. AnyCompany acquires Example Corp, which has an application that runs behind an Application Load Balancer (ALB) in Example Corp's AWS account, named Account-B.

Example Corp needs to use AWS Global Accelerator to create an accelerator to publish the application to users. AnyCompany's networking team will manage the accelerator.

Which solution will meet these requirements with the LEAST management overhead?

Answer options

• A. Create an accelerator in Account-В. Use a cross-account role from Account-A to grant the networking team access to manage the accelerator.
• B. Deploy a Network Load Balancer (NLB) in Account-A to route traffic to the ALB in Account-В. Create an accelerator, and set the NLB as the endpoint in Account-A.
• C. Create a cross-account Global Accelerator attachment in Account-В for the Account-A principal. Create an accelerator in Account-A by using the shared attachment.
• D. Create an accelerator in Account-A. Use AWS Resource Access Management (AWS RAM) to share the accelerator with Account-В. Associate the ALB in Account-В with the accelerator in Account-A.

Correct answer: C

Explanation

Option C is the correct answer because it allows the networking team in Account-A to manage the Global Accelerator while directly linking it with resources in Account-B, minimizing management overhead. Option A requires maintaining separate accelerators in both accounts, which increases complexity. Option B involves additional setup with a Network Load Balancer, adding more management tasks. Option D, while feasible, introduces extra steps and dependencies through AWS RAM, which is not necessary in this scenario.