Answer: Create an organization from the master account. Send invitations to the secondary accounts from the master account. Accept the invitations and create an OU, Create a service control policy (SCP) that enables full EC2 access, and attach the policy to the OU.

A: **Create an organization from the master account. Send invitations to the secondary accounts from the master account. Accept the invitations and create an OU.** Explanation: By creating an AWS Organization from the master account, you can centrally manage and consolidate billing, manage policies and apply centralized controls across all accounts. Invitations are sent to the secondary accounts to join the organization, ensuring streamlined and consistent management across them. Creating an Organizational Unit (OU) allows grouping of secondary accounts under a single administrative unit, making policy application and account management easier. D: **Create a service control policy (SCP) that enables full EC2 access, and attach the policy to the OU.** Explanation: Service Control Policies (SCPs) are a type of organization policy that enable or disable AWS service actions for the accounts in an OU. By creating an SCP that grants full EC2 access, and attaching it to the OU, you ensure that all current and future accounts within that OU inherit the same permissions, effectively reducing the effort associated with managing access and maintaining consistent permissions as new secondary accounts are added. This approach aligns with the goal of reducing the administrative overhead of adding new accounts while ensuring full EC2 access.

Author: LeetQuiz Editorial Team