SCS-C02 · Question #135
SCS-C02 Question #135: Real Exam Question with Answer & Explanation
Sign in or unlock SCS-C02 to reveal the answer and full explanation for question #135. The question stem and answer options stay visible for context.
Question
A security engineer recently rotated all IAM access keys in an AWS account. The security engineer then configured AWS Config and enabled the following AWS Config managed rules: mfa-enabled-for-iam-console-access, iam-user-mfa-enabled, access-keys-rotated, and iam-user- unused-credentials-check. The security engineer notices that all resources are displaying as noncompliant after the IAM GenerateCredentialReport API operation is invoked. What could be the reason for the noncompliant status?
Options
- AThe IAM credential report was generated within the past 4 hours.
- BThe security engineer does not have the GenerateCredentialReport permission.
- CThe security engineer does not have the GetCredenlialReport permission.
- DThe AWS Config rules have a MaximumExecutionFrequency value of 24 hours.
Unlock SCS-C02 to see the answer
You've previewed enough free SCS-C02 questions. Unlock SCS-C02 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.