Answer-first summary for fast verification
Answer: Service control policies (SCPs) for centralized restrictions
The correct answer is B, Service control policies (SCPs). SCPs are a feature of AWS Organizations that allow an organization to set rules that govern the use of AWS services across all accounts in the organization. They can be used to restrict the use of specific AWS services or to impose additional conditions or requirements on the use of those services. SCPs are applied at the organizational unit (OU) level, enabling organizations to create different policies for different groups of accounts within their AWS Organization. This is the appropriate tool for limiting access to AWS services for member accounts in the context of AWS Organizations, as opposed to IAM, which is used for managing access within individual accounts, or OUs and ACLs, which serve different organizational and access control purposes.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
In AWS Organizations, which feature enables a global media company to restrict access to specific AWS services across multiple member accounts?
A
IAM for individual account permissions
B
Service control policies (SCPs) for centralized restrictions
C
Organizational units (OUs) for account structuring
D
Access control lists (ACLs) for resource access
No comments yet.