SOA-C02 · Question #595
SOA-C02 Question #595: Real Exam Question with Answer & Explanation
Sign in or unlock SOA-C02 to reveal the answer and full explanation for question #595. The question stem and answer options stay visible for context.
Question
A company uses AWS Organizations to manage a set of AWS accounts. The company has set up organizational units (OUs) in the organization. An application OU supports various applications. A SysOps administrator must prevent users from launching Amazon EC2 instances that do not have a CostCenter-Project tag into any account in the application OU. The restriction must apply only to accounts in the application OU. Which solution will meet these requirements?
Options
- ACreate an IAM group that has a policy that allows the ec2:RunInstances action when the
- BCreate a service control policy (SCP) that denies the ec2:RunInstances action when the
- CCreate an IAM role that has a policy that allows the ec2:RunInstances action when the
- DCreate a service control policy (SCP) that denies the ec2:RunInstances action when the
Unlock SOA-C02 to see the answer
You've previewed enough free SOA-C02 questions. Unlock SOA-C02 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.