AWS Certified Solutions Architect Professional SAP-C02 Practice Question
A global retail company that uses a multi-account AWS Organization suffered a production outage during a major sales event. The root cause was an EC2 instance-launch failure after the account reached its Regional vCPU quota.
The Head of Platform Engineering requires a scalable solution that will:
- Continuously monitor all critical service quotas in every account and Region.
- Send automated alerts when utilization exceeds 80 percent of the applied quota value.
Which approach is the most reliable and scalable way to meet these requirements?
In each member account, create an EventBridge rule that triggers an AWS Lambda function every five minutes. The function calls
Describe*andList*APIs to count resources, compares the count to hard-coded default quota values, and sends an SNS notification if the threshold is exceeded.Use AWS CloudFormation StackSets to deploy the
ec2-resource-count-checkAWS Config managed rule to all accounts and Regions. Aggregate the compliance results in a central account and publish an SNS notification whenever a resource count is non-compliant.Enable AWS Trusted Advisor in the management account. Create an Amazon EventBridge rule that matches any change in the Service Limits check and invokes an AWS Lambda function to publish an alert through Amazon SNS.
In the Organization's management account, author a CloudFormation template that creates a CloudWatch alarm based on the EC2
AWS/UsageResourceCountmetric combined with theSERVICE_QUOTAmath function. Deploy the template to all member accounts and target Regions by using AWS CloudFormation StackSets with service-managed permissions and automatic deployments enabled.