AWS Certified CloudOps Engineer Associate SOA-C03 Practice Question
A CloudOps engineer manages a centralized networking account that contains a VPC with several private subnets. The engineer must allow an application account in the same AWS Organization to launch EC2 instances in one of these subnets while retaining subnet ownership in the networking account. The solution must be available immediately in the application account without requiring any manual actions by that team. Which approach meets these requirements?
Share the subnet through AWS Resource Access Manager and instruct the application account administrators to manually accept the resource share invitation.
Use AWS Resource Access Manager to share the subnet with the organization and enable Automatically accept shared resources in the application account.
Deploy a CloudFormation StackSet from the networking account that recreates an identical subnet in the application account.
Create a VPC peering connection between the two accounts and configure the application account to reference the subnet ID from the networking account.
AWS Resource Access Manager (AWS RAM) supports VPC sharing, allowing a subnet to be shared with other accounts while remaining owned by the networking account. If the target account enables the "Automatically accept shared resources" setting, resource shares that originate from within the same AWS Organization are accepted without user interaction, so the subnet appears immediately and can be used to launch EC2 instances. VPC peering does not let another account use a subnet in place; it only provides routing between VPCs. Re-creating the subnet with CloudFormation duplicates IP space and doesn't satisfy the ownership requirement. Sharing through AWS RAM but relying on manual acceptance adds operational overhead and violates the "no manual actions" constraint.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is AWS Resource Access Manager (AWS RAM)?
Open an interactive chat with Bash
How does 'Automatically accept shared resources' work in AWS RAM?
Open an interactive chat with Bash
Why can't VPC peering be used to share subnets between accounts?
Open an interactive chat with Bash
What is AWS Resource Access Manager (AWS RAM)?
Open an interactive chat with Bash
How does enabling 'Automatically accept shared resources' work?
Open an interactive chat with Bash
Why is VPC peering not a suitable solution in this scenario?
Open an interactive chat with Bash
AWS Certified CloudOps Engineer Associate SOA-C03
Deployment, Provisioning, and Automation
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99
$19.99/mo
Billed monthly, Cancel any time.
3 Month Pass
$44.99
$14.99/mo
One time purchase of $44.99, Does not auto-renew.
MOST POPULAR
Annual Pass
$119.99
$9.99/mo
One time purchase of $119.99, Does not auto-renew.
BEST DEAL
Lifetime Pass
$189.99
One time purchase, Good for life.
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .