A company operates in multiple AWS Regions.

Amazon Web Services ANS-C01 Question Answer

A company operates in multiple AWS Regions. The company has deployed transit gateways in each Region. The company uses AWS Organizations to operate multiple AWS accounts in one organization.

The company needs to capture all VPC flow log data when a new VPC is created. The company needs to send flow logs to a specific Amazon S3 bucket.

Which solution will meet these requirements with the LEAST administrative effort?

Update IAM permissions for each user to include a condition that ensures users cancreate VPCs only when VPC Flow Logs is enabled and configured correctly.

Create a custom AWS Config rule with automatic remediation that verifies VPC Flow Logs is enabled and configured correctly. Apply the AWS Config rule to the organization.

Enable VPC Flow Logs on each transit gateway. Configure VPC Flow Logs to send flow logs to the specified S3 bucket.

Deploy a serverless application that uses AWS CloudTrail to monitor for VPC creation events in each account. Configure the application to apply the correct VPC Flow Logs configuration.

Amazon Web Services ANS-C01 View All Questions

Amazon Web Services ANS-C01 Summary

Vendor: Amazon Web Services
Product: ANS-C01
Update on: Jul 31, 2025
Questions: 288

Price: $52.5 ~~$149.99~~

Buy Now ANS-C01 PDF + Testing Engine Pack

A company hosts application servers on premises and on Amazon EC2 instances in a VPC.

A marketing company is using hybrid infrastructure through AWS Direct Connect links and a software-defined...

Weekend Sale Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: xmasmnth

A company operates in multiple AWS Regions.

The Answer Is:

Explanation:

Amazon Web Services ANS-C01 Summary

Payments We Accept

Contact Us