SCS-C03 Question #2: Real Exam Question with Answer & Explanation

Sign in or unlock SCS-C03 to reveal the answer and full explanation for question #2. The question stem and answer options stay visible for context.

Submitted by marco_it· Mar 6, 2026Identity and Access Management (IAM)

Question

A company's developers are using AWS Lambda function URLs to invoke functions directly. The company must ensure that developers cannot configure or deploy unauthenticated functions in production accounts. The company wants to meet this requirement by using AWS Organizations. The solution must not require additional work for the developers. Which solution will meet these requirements?

Options

ARequire the developers to configure all function URLs to support cross-origin resource sharing
BUse an AWS WAF delegated administrator account to view and block unauthenticated access to
CUse SCPs to allow all lambda:CreateFunctionUrlConfig and lambda:UpdateFunctionUrlConfig
DUse SCPs to deny all lambda:CreateFunctionUrlConfig and lambda:UpdateFunctionUrlConfig

Unlock SCS-C03 to see the answer

You've previewed enough free SCS-C03 questions. Unlock SCS-C03 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.

Unlock SCS-C03 - $49.99 / 30 days Sign in

Topics

#AWS Organizations#Service Control Policies (SCPs)#AWS Lambda Function URLs#Access Control

Full SCS-C03 Practice Browse All SCS-C03 Questions