AWS Certified Solutions Architect – Professional — Question 176

An organization has 4 people in the IT operations team who are responsible to manage the AWS infrastructure. The organization wants to setup that each user will have access to launch and manage an instance in a zone which the other user cannot modify.
Which of the below mentioned options is the best solution to set this up?

Answer options

• A. Create four AWS accounts and give each user access to a separate account.
• B. Create an IAM user and allow them permission to launch an instance of a different sizes only.
• C. Create four IAM users and four VPCs and allow each IAM user to have access to separate VPCs.
• D. Create a VPC with four subnets and allow access to each subnet for the individual IAM user.

Correct answer: D

Explanation

The correct answer is D because creating a VPC with four subnets allows each IAM user to have dedicated access to a separate subnet, ensuring that their instances are isolated from each other. Options A and C would require managing multiple accounts or VPCs, which complicates the setup without providing the desired isolation, while option B does not provide the necessary infrastructure isolation needed for the users.