Skip to Content

Amazon CLF-C02: Which AWS service to aggregate and manage all individual accounts?

By: Author Alex Lim

Posted on  - Last updated:

Categories Exam

Table of Contents

Question

A company wants to have one AWS account for the entire company and individual accounts for each department. Which AWS service should the company use to aggregate and manage all accounts?

A. AWS Billing and Cost Management
B. AWS Organizations
C. AWS Identity and Access Management (IAM)
D. AWS Resource Access Manager

Answer

B. AWS Organizations

Explanation

The correct answer is: B. AWS Organizations

AWS Organizations is the AWS service that the company should use to aggregate and manage all accounts when they want to have one AWS account for the entire company and individual accounts for each department.

AWS Organizations is designed to help you centrally manage multiple AWS accounts within your organization. It provides the following benefits:

  • Consolidated Billing: With AWS Organizations, you can consolidate billing across all linked accounts, making it easier to manage and understand your overall AWS costs.
  • Account Hierarchy: You can create an organizational hierarchy that aligns with your company’s structure, with a master account at the top and separate accounts for each department or business unit.
  • Centralized Policies: You can create and apply policies across multiple accounts, ensuring consistent security, compliance, and governance practices.
  • Service Control Policies (SCPs): AWS Organizations allows you to create and apply SCPs that define which AWS services and actions are allowed or denied for each account. This helps in maintaining a controlled environment.
  • Cross-Account Access: You can easily establish cross-account access for IAM users and roles, allowing different departments to collaborate securely across accounts.

Comparing the other options:

  • A. AWS Billing and Cost Management: This service helps you understand and manage your AWS costs, but it does not provide the account management capabilities needed for having separate accounts for each department.
  • C. AWS Identity and Access Management (IAM): IAM is used for managing access to AWS resources within an account. While important for security, it doesn’t provide the hierarchical account management and consolidation capabilities offered by AWS Organizations.
  • D. AWS Resource Access Manager: This service is used to share AWS resources that you create with other AWS accounts. It does not address the need for aggregating and managing multiple accounts in an organizational structure.

In summary, AWS Organizations is the correct choice for the company to aggregate and manage all accounts when they want to have one AWS account for the entire company and individual accounts for each department.

Which AWS service to aggregate and manage all individual accounts?

Amazon AWS Certified Cloud Practitioner CLF-C02 certification exam practice question and answer (Q&A) dump with detail explanation and reference available free, helpful to pass the Amazon AWS Certified Cloud Practitioner CLF-C02 exam and earn Amazon AWS Certified Cloud Practitioner CLF-C02 certification.