SCS-C02 · Question #13
SCS-C02 Question #13: Real Exam Question with Answer & Explanation
Sign in or unlock SCS-C02 to reveal the answer and full explanation for question #13. The question stem and answer options stay visible for context.
Question
A company's security engineer has been tasked with restricting a contractor's IAM account access to the company's Amazon EC2 console without providing access to any other AWS services. The contractor's IAM account must not be able to gain access to any other AWS service, even if the IAM account is assigned additional permissions based on IAM group membership. What should the security engineer do to meet these requirements?
Options
- ACreate an inline IAM user policy that allows for Amazon EC2 access for the contractor's IAM user.
- BCreate an IAM permissions boundary policy that allows Amazon EC2 access. Associate the
- CCreate an IAM group with an attached policy that allows for Amazon EC2 access. Associate the
- DCreate a IAM role that allows for EC2 and explicitly denies all other services. Instruct the
Unlock SCS-C02 to see the answer
You've previewed enough free SCS-C02 questions. Unlock SCS-C02 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.