SCS-C03 · Question #28
SCS-C03 Question #28: Real Exam Question with Answer & Explanation
Sign in or unlock SCS-C03 to reveal the answer and full explanation for question #28. The question stem and answer options stay visible for context.
Question
A company that uses AWS Organizations is using AWS IAM Identity Center to administer access to AWS accounts. A security engineer is creating a custom permission set in IAM Identity Center. The company will use the permission set across multiple accounts. An AWS managed policy and a customer managed policy are attached to the permission set. The security engineer has full administrative permissions and is operating in the management account. When the security engineer attempts to assign the permission set to an IAM Identity Center user who has access to multiple accounts, the assignment fails. What should the security engineer do to resolve this failure?
Options
- ACreate the customer managed policy in every account where the permission set is assigned. Give
- BRemove either the AWS managed policy or the customer managed policy from the permission
- CEvaluate the logic of the AWS managed policy and the customer managed policy. Resolve any
- DDo not add the new permission set to the user. Instead, edit the user's existing permission set to
Unlock SCS-C03 to see the answer
You've previewed enough free SCS-C03 questions. Unlock SCS-C03 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.