AWS Certified Solutions Architect – Professional — Question 606

A large company recently experienced an unexpected increase in Amazon RDS and Amazon DynamoDB costs. The company needs to increase visibility into details of AWS Billing and Cost Management. There are various accounts associated with AWS Organizations, including many development and production accounts. There is no consistent tagging strategy across the organization, but there are guidelines in place that require all infrastructure to be deployed using
AWS CloudFormation with consistent tagging. Management requires cost center numbers and project ID numbers for all existing and future DynamoDB tables and
RDS instances.
Which strategy should the solutions architect provide to meet these requirements?

Answer options

• A. Use Tag Editor to tag existing resources. Create cost allocation tags to define the cost center and project ID and allow 24 hours for tags to propagate to existing resources.
• B. Use an AWS Config rule to alert the finance team of untagged resources. Create a centralized AWS Lambda based solution to tag untagged RDS databases and DynamoDB resources every hour using a cross-account role.
• C. Use Tag Editor to tag existing resources. Create cost allocation tags to define the cost center and project ID. Use SCPs to restrict resource creation that do not have the cost center and project ID on the resource.
• D. Create cost allocation tags to define the cost center and project ID and allow 24 hours for tags to propagate to existing resources. Update existing federated roles to restrict privileges to provision resources that do not include the cost center and project ID on the resource.

Correct answer: C

Explanation

To manage existing untagged resources efficiently, the Tag Editor allows administrators to find and tag resources globally. To enforce the tagging policy for all future resources across all accounts in AWS Organizations, Service Control Policies (SCPs) are the most robust governance mechanism to deny the creation of resources that lack the mandatory tags. Activating these tags as cost allocation tags then ensures they are correctly tracked in AWS Billing and Cost Management.