What is the MOST operationally efficient solution that meets this requirement?

By:
On:
In: SOA-C02
Tagged:
With: 0 Comments
A company wants to track its expenditures for Amazon EC2 and Amazon RDS within AWS.The company decides to implement more rigorous tagging requirements for resources in its AWS accounts.A SysOps administrator needs to identify all noncompliant resources.

What is the MOST operationally efficient solution that meets this requirement?

Create a rule in Amazon EventBridge that invokes a custom AWS Lambda function that will evaluate all created or updated resources for the specified tags.

Create a rule in AWS Config that invokes a custom AWS Lambda function that will evaluate all resources for the specified tags.

Create a rule in AWS Config with the required-tags managed rule to evaluate all resources for the specified tags.

Create a rule in Amazon EventBridge with a managed rule to evaluate all created or updated resources for the specified tags.

Explanations:

While EventBridge can trigger Lambda functions, it would require custom logic to evaluate tags on all resources, which is more complex and less efficient than using AWS Config with managed rules.

Similar to option A, using EventBridge with a custom Lambda function adds unnecessary complexity compared to the managed AWS Config rule.

AWS Config’s “required-tags” managed rule automatically evaluates resources for compliance with the specified tags, providing an operationally efficient and automated solution.

EventBridge with a managed rule does not directly support evaluating resource tags. It is better suited for event-driven workflows rather than compliance checking of resource tags.

Leave a Reply

Your email address will not be published. Required fields are marked *

7 + five =