AWS Certified SysOps Administrator – Associate — Question 234

A company wants to track its expenditures for Amazon EC2 and Amazon RDS within AWS. The company decides to implement more rigorous tagging requirements for resources in its AWS accounts. A SysOps administrator needs to identify all noncompliant resources.

What is the MOST operationally efficient solution that meets this requirement?

Answer options

• A. Create a rule in Amazon EventBridge that invokes a custom AWS Lambda function that will evaluate all created or updated resources for the specified tags.
• B. Create a rule in AWS Config that invokes a custom AWS Lambda function that will evaluate all resources for the specified tags.
• C. Create a rule in AWS Config with the required-tags managed rule to evaluate all resources for the specified tags.
• D. Create a rule in Amazon EventBridge with a managed rule to evaluate all created or updated resources for the specified tags.

Correct answer: C

Explanation

The correct answer is C because using AWS Config with the required-tags managed rule allows for automated compliance checking of all resources against specified tags, making it the most operationally efficient method. Options A and D involve Amazon EventBridge, which is not the best fit for ongoing compliance checking, while option B suggests a custom AWS Lambda function that requires additional management overhead.