DOP-C02 · Question #276
DOP-C02 Question #276: Real Exam Question with Answer & Explanation
Sign in or unlock DOP-C02 to reveal the answer and full explanation for question #276. The question stem and answer options stay visible for context.
Question
A company has an organization in AWS Organizations. A DevOps engineer needs to maintain multiple AWS accounts that belong to different OUs in the organization. All resources, including IAM policies and Amazon S3 policies within an account, are deployed through AWS CloudFormation. All templates and code are maintained in an AWS CodeCommit repository. Recently, some developers have not been able to access an S3 bucket from some accounts in the organization. The following policy is attached to the S3 bucket: What should the DevOps engineer do to resolve this access issue?
Options
- AModify the S3 bucket policy. Turn off the S3 Block Public Access setting on the S3 bucket. In the
- BVerify that no IAM permissions boundaries are denying developers access to the S3 bucket.
- CConfigure an SCP that stops anyone from modifying IAM resources in developer OUs. In the S3
- DEnsure that no SCP is blocking access for developers to the S3 bucket. Ensure that no IAM policy
Unlock DOP-C02 to see the answer
You've previewed enough free DOP-C02 questions. Unlock DOP-C02 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.