A company centrally manages hundreds of AWS accounts using AWS Organizations. They have recently allowed product teams to create and manage their own S3 access points within their accounts, but these access points must only be accessible within VPCs and not on the internet. What is the most operationally efficient method to enforce this requirement? | AWS Certified Solutions Architect - Professional Quiz