SCS-C02 · Question #424
SCS-C02 Question #424: Real Exam Question with Answer & Explanation
The correct answer is B: Enable AWS IAM Identity Center and use the external IdP as the identity source. Create. AWS IAM Identity Center (formerly AWS Single Sign-On) allows integration with external identity providers (IdPs) for centralized user management across multiple AWS accounts. By configuring IAM Identity Center to use the external IdP as the identity source, the company can centra
Question
A company is planning to create an organization by using AWS Organizations. The company needs to integrate user management with the company's external identity provider (IdP). The company also needs to centrally manage access to all of its AWS accounts and applications from the organization's management account. Which solution will meet these requirements?
Options
- AConfigure AWS Directory Service with the external IdP. Create IAM policies and associate them
- BEnable AWS IAM Identity Center and use the external IdP as the identity source. Create
- CConfigure AWS Identity and Access Management (IAM) to use the external IdP as an IdP.
- DEnable Amazon Cognito in the organization's management account. Create an identity pool and
Explanation
AWS IAM Identity Center (formerly AWS Single Sign-On) allows integration with external identity providers (IdPs) for centralized user management across multiple AWS accounts. By configuring IAM Identity Center to use the external IdP as the identity source, the company can centrally manage user access and permissions through permission sets and account assignments, ensuring unified access management across all AWS accounts within the organization. This solution meets both requirements of integrating with the external IdP and managing access
Community Discussion
No community discussion yet for this question.