AWS Certified Solutions Architect – Professional (SAP-C02) — Question 81

A company has its cloud infrastructure on AWS. A solutions architect needs to define the infrastructure as code. The infrastructure is currently deployed in one AWS Region. The company’s business expansion plan includes deployments in multiple Regions across multiple AWS accounts.

What should the solutions architect do to meet these requirements?

Answer options

• A. Use AWS CloudFormation templates. Add IAM policies to control the various accounts, Deploy the templates across the multiple Regions.
• B. Use AWS Organizations. Deploy AWS CloudFormation templates from the management account Use AWS Control Tower to manage deployments across accounts.
• C. Use AWS Organizations and AWS CloudFormation StackSets. Deploy a Cloud Formation template from an account that has the necessary IAM permissions.
• D. Use nested stacks with AWS CloudFormation templates. Change the Region by using nested stacks.

Correct answer: C

Explanation

The correct answer is C because AWS Organizations and AWS CloudFormation StackSets allow for the deployment of templates across multiple accounts and Regions efficiently. Option A lacks the capability to manage multiple accounts effectively, while option B does not utilize StackSets, which are essential for multi-account deployments. Option D focuses on nested stacks, which are not designed for cross-account deployments.