AWS Certified Developer – Associate — Question 424

A developer uses a single AWS CloudFormation template to configure the test environment and the production environment for an application. The developer handles environment-specific requirements in the CloudFormation template.
The developer decides to update the Amazon EC2 Auto Scaling launch template with new Amazon Machine Images (AMIs) for each environment. The
CloudFormation update for the new AMIs is successful in the test environment, but the update fails in the production environment.
What are the possible causes of the CloudFormation update failure in the production environment? (Choose two.)

Answer options

• A. The new AMIs do not fulfill the specified conditions in the CloudFormation template.
• B. The service quota for the number of EC2 vCPUs in the AWS Region has been exceeded.
• C. The security group that is specified in the CloudFormation template does not exist.
• D. CloudFormation does not recognize the template change as an update.
• E. CloudFormation does not have sufficient IAM permissions to make the changes.

Correct answer: A, B

Explanation

If the new AMIs do not satisfy the CloudFormation template's conditional rules (such as region or environment mappings), the stack update will fail. Additionally, launching new instances as part of an Auto Scaling update can fail if the production AWS Region has exceeded its EC2 vCPU service quota. Other options like missing security groups or IAM permission issues would generally prevent deployment in both environments or represent different failure modes.