SAP-C02 Exam QuestionsBrowse all questions from this exam
Go to Exam

SAP-C02 Exam - Question 29

A company that has multiple AWS accounts is using AWS Organizations. The company’s AWS accounts host VPCs, Amazon EC2 instances, and containers.

The company’s compliance team has deployed a security tool in each VPC where the company has deployments. The security tools run on EC2 instances and send information to the AWS account that is dedicated for the compliance team. The company has tagged all the compliance-related resources with a key of “costCenter” and a value or “compliance”.

The company wants to identify the cost of the security tools that are running on the EC2 instances so that the company can charge the compliance team’s AWS account. The cost calculation must be as accurate as possible.

What should a solutions architect do to meet these requirements?

Show Answer
Correct Answer: A

To accurately identify and track the costs associated with the security tools that run on EC2 instances across multiple AWS accounts, the management account in AWS Organizations must activate the costCenter user-defined tag. By configuring monthly AWS Cost and Usage Reports to save to an Amazon S3 bucket in the management account, the company can leverage the tag breakdown feature in these reports to obtain the total cost for resources tagged with costCenter. This approach ensures that the compliance team’s AWS account is accurately charged for the use of the security tools, providing an organization-wide view of cost allocation that is both comprehensive and accurate.

Discussion

17 comments
Sign in to comment
masetromainOption: A
Jan 13, 2023

Answer A : because we do not depend on the users, I prefer management account Option C or A would be the correct answer. In option C, the solution architect would activate the costCenter user-defined tag in the member accounts of the organization, and then schedule a monthly AWS Cost and Usage Report from the management account to retrieve the reports and calculate the total cost for the costCenter tagged resources. In option A, the management account of the organization would activate the costCenter user-defined tag and configure monthly AWS Cost and Usage Reports to be saved to an Amazon S3 bucket in the management account. Then, use the tag breakdown in the report to obtain the total cost for the costCenter tagged resources. Both options would allow the company to accurately identify the cost of the security tools running on the EC2 instances and charge the compliance team’s AWS account.

chathur
May 30, 2023

User-defined tags can not be allowed from management accounts in AWS Organization. It must done from the management Account.

Reval
Jul 2, 2024

Did you mean from member account? in this sentence "User-defined tags can not be allowed from management accounts in AWS Organization."

dkx
Jun 26, 2023

Only a management account in an organization and single accounts that aren't members of an organization have access to the cost allocation tags manager in the Billing and Cost Management console. https://docs.aws.amazon.com/awsaccountbilling/latest/aboutv2/custom-tags.html

UntamablesOption: A
Dec 28, 2022

I vote A. https://docs.aws.amazon.com/awsaccountbilling/latest/aboutv2/custom-tags.html https://docs.aws.amazon.com/awsaccountbilling/latest/aboutv2/configurecostallocreport.html

tman22
Dec 20, 2022

A. You want the cost information across all accounts - So you use the management account.

bur4anOption: A
Aug 31, 2023

Only a management account in an organization and single accounts that aren't members of an organization have access to the cost allocation tags manager in the Billing and Cost Management console.

zozza2023Option: A
Jan 30, 2023

Answer A

imvb88Option: A
Oct 1, 2023

https://docs.aws.amazon.com/awsaccountbilling/latest/aboutv2/activating-tags.html "For tags to appear on your billing reports, you must activate them." https://docs.aws.amazon.com/awsaccountbilling/latest/aboutv2/custom-tags.html "Only a management account in an organization and single accounts that aren't members of an organization have access to the cost allocation tags manager in the Billing and Cost Management console." -> eliminate B,C. D is not relevant

severlightOption: A
Nov 12, 2023

yes, you need to activate cost allocation tags before using, you can do this the same place where you would like to see your reports - management account

masetromain
Dec 13, 2022

I want to answer C

yimiccOption: C
Dec 28, 2022

Should be a C

yimicc
Dec 28, 2022

Change to A, the activation of user tag for billing can only be done by management account

kiran15789Option: A
Mar 7, 2023

Management account for reports

mfsecOption: A
Mar 28, 2023

Cost center tag int he management account.

rtguru
May 24, 2023

I go with D

NikkyDicky
Jun 28, 2023

it's an A

whenthanOption: A
Sep 5, 2023

https://docs.aws.amazon.com/whitepapers/latest/tagging-best-practices/building-a-cost-allocation-strategy.html

whenthanOption: C
Oct 18, 2023

lines up correctly activate tag in member accounts and generating AWS CUR from management account ( has ability to see costs across all member accounts) and Tag breakfdown in report

subbupro
Dec 5, 2023

A is ccorect, we need to login to management account to create

gofavad926Option: A
Mar 16, 2024

A is correct