AWS Certified SysOps Administrator – Associate (legacy) — Question 869

A SysOps Administrator must devise a strategy for enforcing tagging of all EC2 instances and Amazon Elastic Block Store (Amazon EBS) volumes.
What action can the Administrator take to implement this for real-time enforcement?

Answer options

• A. Use the AWS Tag Editor to manually search for untagged resources and then tag them properly in the editor.
• B. Set up AWS Service Catalog with the TagOptions Library rule that enforces a tagging taxonomy proactively when instances and volumes are launched.
• C. In a PowerShell or shell script, check for untagged items by using the resource tagging GetResources API action, and then manually tag the reported items.
• D. Launch items by using the AWS API. Use the TagResources API action to apply the required tags when the instances and volumes are launched.

Correct answer: A

Explanation

AWS Tag Editor allows administrators to search for EC2 instances and Amazon EBS volumes globally and apply missing tags directly within the console for immediate remediation. While scripting or AWS Service Catalog can assist with tagging, they require additional maintenance or only apply to specific provisioning paths rather than offering direct, real-time correction of untagged resources. Therefore, using the AWS Tag Editor is the most straightforward mechanism to identify and immediately resolve tagging gaps.