1 Answers
Hi Tyrone,
This is a tricky question but uses a trick that we’ve seen on the exam a few times. The question does not say that we are using AWS Organizations and we can certainly have multiple accounts we are responsible for without using AWS Organizations. But you may say AWS Organizations is the most efficient…but maybe it’s not. What if we were a third-party company that monitors security for example of multiple other independent companies. We wouldn’t use AWS Organizations in that case.
Not saying that we have to read into the question those details, but it’s important to NOT read into the question details like assuming we can use AWS Organizations. Another elimination factor for B is that there is no feature in AWS Organizations called Log Consolidation. It’s actually a process involving cross-account IAM roles and normal CloudTrail stuff.
–Scott
I… I’m just lost… and speechless
I have this confusion as well. Would appreciate feedback on this!