A company with several AWS accounts is using AWS Organizations and service control policies (SCPs) . An Administrator created the following SCP and has attached it to an organizational unit (OU) that contains AWS account 1111-1111-1111: 
Developers working in account 1111-1111-1111 complain that they cannot create Amazon S3 buckets. How should the Administrator address this problem?
A) Add s3:CreateBucket with "Allow" effect to the SCP. Add s3:CreateBucket with "Allow" effect to the SCP.
B) Remove the account from the OU, and attach the SCP directly to account 1111-1111-1111.
C) Instruct the Developers to add Amazon S3 permissions to their IAM entities.
D) Remove the SCP from account 1111-1111-1111.
Correct Answer:
Verified
Q412: A company is finalizing the architecture for
Q413: The company Security team requires that all
Q414: A Solutions Architect must create a cost-effective
Q415: A company wants to ensure that the
Q416: A company is running a high-user-volume media-sharing
Q418: A company is running a .NET three-tier
Q419: A Development team is deploying new APIs
Q420: A company is implementing a multi-account strategy;
Q421: A Development team has created a series
Q422: A company deployed a three-tier web application
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents