🔥 3-day streak
AWS Certified Solutions Architect - Professional114 / 186
Question 114 of 186

A large enterprise operates roughly 200 accounts under AWS Organizations, grouped into OUs for Production, Development, and Sandbox. The FinOps team reports that a growing percentage of EC2 and RDS resources launch without a mandatory 'CostCenter' tag, which breaks their chargeback reporting. Leadership wants a preventive control that stops noncompliant resource creation at the organizational level, but they require that AWS service-linked roles and automated backup/recovery service actions are never blocked by this control. Which approach best meets these requirements?

Reviewed for accuracy · Report an issueNext question