🔥 3-day streak
AWS Certified Solutions Architect - Professional138 / 186
Question 138 of 186
A company manages 120 AWS accounts using AWS Organizations with all features enabled. For data residency and compliance reasons, leadership mandates that no workloads may be created outside the eu-west-1 and eu-central-1 Regions in any member account, including future accounts. The security team must enforce this centrally without relying on developers to configure anything, while still allowing global services (such as IAM, CloudFront, and Route 53) to function normally. What is the MOST effective way to implement this requirement?
Reviewed for accuracy · Report an issueNext question