SCS-C03 · Question #140
SCS-C03 Question #140: Real Exam Question with Answer & Explanation
Sign in or unlock SCS-C03 to reveal the answer and full explanation for question #140. The question stem and answer options stay visible for context.
Question
A company is expanding its group of stores. On the day that each new store opens, the company wants to launch a customized web application for that store. Each store's application will have a non-production environment and a production environment. Each environment will be deployed in a separate AWS account. The company uses AWS Organizations and has an OU that is used only for these accounts. The company distributes most of the development work to third-party development teams. A security engineer needs to ensure that each team follows the company's deployment plan for AWS resources. The security engineer also must limit access to the deployment plan to only the developers who need access. The security engineer already has created an AWS CloudFormation template that implements the deployment plan. What should the security engineer do next to meet the requirements in the MOST secure way?
Options
- ACreate an AWS Service Catalog portfolio in the organization's management account. Upload the
- BUse the CloudFormation CLI to create a module from the CloudFormation template. Register the
- CCreate an AWS Service Catalog portfolio and create an IAM role for cross-account access. Attach
- DUse the CloudFormation CLI to create a module and share the extension directly with the OU.
Unlock SCS-C03 to see the answer
You've previewed enough free SCS-C03 questions. Unlock SCS-C03 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.