Multiple Choice
A company is operating a multi-account environment under a single organization using AWS Organizations. The Security team discovers that some employees are using AWS services in ways that violate company policies. A SysOps Administrator needs to prevent all users of an account, including the root user, from performing certain restricted actions. What should be done to accomplish this?
A) Apply service control policies (SCPs) to allow approved actions only
B) Apply service control policies (SCPs) to prevent restricted actions
C) Define permissions boundaries to allow approved actions only
D) Define permissions boundaries to prevent restricted actions
Correct Answer:
Verified
Correct Answer:
Verified
Q394: What are the benefits of CloudTrail integration
Q395: A company wants to ensure that each
Q396: A sys admin has enabled logging on
Q397: An organization has configured a VPC with
Q398: The Security team has decided that there
Q400: A company's finance department wants to receive
Q401: A user has setup an EBS backed
Q402: What is the minimum duration when setting
Q403: An application is currently deployed on several
Q404: An Amazon EC2 instance has a secondary