AWS Certified Solutions Architect – Associate (SAA-C02) — Question 229

A company that hosts its web application on AWS wants to ensure all Amazon EC2 instances, Amazon RDS DB instances, and Amazon Redshift clusters are configured with tags. The company wants to minimize the effort of configuring and operating this check.
What should a solutions architect do to accomplish this?

Answer options

• A. Use AWS Config rules to define and detect resources that are not properly tagged.
• B. Use Cost Explorer to display resources that are not properly tagged. Tag those resources manually.
• C. Write API calls to check all resources for proper tag allocation. Periodically run the code on an EC2 instance.
• D. Write API calls to check all resources for proper tag allocation. Schedule an AWS Lambda function through Amazon CloudWatch to periodically run the code.

Correct answer: A

Explanation

The correct answer is A because AWS Config rules are specifically designed to monitor resource compliance, including tagging, with minimal manual intervention. Option B requires manual tagging, which contradicts the goal of minimizing effort. Option C involves running code on an EC2 instance, which is less efficient than using AWS Config. Option D, while automated, still involves a manual setup of API calls rather than leveraging existing AWS features designed for this purpose.