A company is operating a multi-account environment under a single organization using AWS Organizations. The Security team discovers that some employees are using AWS services in ways that violate company policies. A SysOps Administrator needs to prevent all users of an account, including the root user, from performing certain restricted actions. What should be done to accomplish this?
A) Apply service control policies (SCPs) to allow approved actions only
B) Apply service control policies (SCPs) to prevent restricted actions
C) Define permissions boundaries to allow approved actions only
D) Define permissions boundaries to prevent restricted actions
Correct Answer:
Verified
Q793: An ecommerce site is using Amazon ElastiCache
Q794: A company website hosts patches for software
Q795: An organization finds that a high number
Q796: A SysOps Administrator wants to prevent Developers
Q797: A SysOps Administrator must generate a report
Q799: A company has an application database on
Q800: A company is releasing a new static
Q801: A company has multiple AWS accounts. The
Q802: The Security team at AnyCompany discovers that
Q803: Developers are using IAM access keys to
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents