# AWS-Certified-Advanced-Networking---Specialty-ANS-C01 — Question 428

**Type:** multiple_choice
**Topics:** topic_1

## Question

A company recently implemented a security policy that prohibits developers from launching VPC network infrastructure. The policy states that any time a NAT gateway is launched in a VPC, the company's network security team must immediately receive an alert to terminate the NAT gateway. The network security team needs to implement a solution that can be deployed across AWS accounts with the least possible administrative overhead. The solution also must provide the network security team with a simple way to view compliance history.

Which solution will meet these requirements?

## Correct Answer

_See scenario._

## Explanation

Correct: D
https://docs.aws.amazon.com/config/latest/developerguide/view-compliance-history.html
https://aws.amazon.com/blogs/mt/remediate-noncompliant-aws-config-rules-with-aws-systems-manager-automation-runbooks/

**Reference:** examtopics_top_comment

---
Source: https://hiexam.net/q/amazon/AWS-Certified-Advanced-Networking---Specialty-ANS-C01/428  
Practice (tracked): https://hiexam.net/study/AWS-Certified-Advanced-Networking---Specialty-ANS-C01/practice