A SysOps Administrator is configuring AWS SSO for the first time. The Administrator has already created a directory in the master account using AWS Directory Service and enabled full access in AWS Organizations. What should the Administrator do next to configure the service?
A) Create IAM roles in each account to be used by AWS SSO, and associate users with these roles using AWS SSO.
B) Create IAM users in the master account, and use AWS SSO to associate the users with the accounts they will access.
C) Create permission sets in AWS SSO, and associate the permission sets with Directory Service users or groups.
D) Create service control policies (SCPs) in Organizations, and associate the SCPs with Directory Service users or groups.
Correct Answer:
Verified
Q386: A company uses multiple accounts for its
Q387: A company is running critical applications on
Q388: What should a SysOps Administrator do to
Q389: A SysOps Administrator is notified that a
Q390: A company is concerned about a security
Q392: A gaming application is deployed on four
Q393: A company has an application running on
Q394: A SysOps Administrator created an Application Load
Q395: A SysOps Administrator responsible for an e-commerce
Q396: A SysOps Administrator needs an Amazon EBS
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents