AWS Certified Cloud Practitioner — Question 839
A company wants to centrally manage security policies and billing services within a multi-account AWS environment.
Which AWS service should the company use to meet these requirements?
Answer options
- A. AWS Identity and Access Management (IAM)
- B. AWS Organizations
- C. AWS Resource Access Manager (AWS RAM)
- D. AWS Config
Correct answer: B
Explanation
AWS Organizations is designed to centrally manage and govern multi-account AWS environments, offering features like consolidated billing and Service Control Policies (SCPs) for security. AWS Identity and Access Management (IAM) manages access within a single account, AWS RAM is used for resource sharing, and AWS Config tracks resource configurations rather than managing multi-account billing.