SOA-C02 · Question #510
SOA-C02 Question #510: Real Exam Question with Answer & Explanation
Sign in or unlock SOA-C02 to reveal the answer and full explanation for question #510. The question stem and answer options stay visible for context.
Question
A SysOps administrator manages policies for many AWS member accounts in an AWS Organizations structure. Administrators on other teams have access to the account root user credentials of the member accounts. The SysOps administrator must prevent all teams, including their administrators, from using Amazon DynamoDB. The solution must not affect the ability of the teams to access other AWS services. Which solution will meet these requirements?
Options
- AIn all member accounts, configure IAM policies that deny access to all DynamoDB resources for
- BCreate a service control policy (SCP) in the management account to deny all DynamoDB actions.
- CIn all member accounts, configure IAM policies that deny AmazonDynamoDBFullAccess to all
- DRemove the default service control policy (SCP) in the management account. Create a
Unlock SOA-C02 to see the answer
You've previewed enough free SOA-C02 questions. Unlock SOA-C02 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.