SCS-C02 · Question #150
SCS-C02 Question #150: Real Exam Question with Answer & Explanation
The correct answer is A: Block service access by using SCPs for the root user. https://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_scps_examp les_general.html#example-scp-root-user
Question
A company has many member accounts in an organization in AWS Organizations. The company is concerned about the potential for misuse of the AWS account root user credentials for member accounts in the organization. To address this potential misuse, the company wants to ensure that even if the account root user credentials are compromised the account is still protected. Which solution will meet this requirement?
Options
- ABlock service access by using SCPs for the root user
- BRemove the password for the root user
- CDelete access keys for the root user
- DCreate an Amazon EventBridge rule to detect any AWS account root user API events
Explanation
https://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_scps_examp les_general.html#example-scp-root-user
Community Discussion
No community discussion yet for this question.