AWS Certified Security - Specialty
Get started today
Ultimate access to all questions.
You are tasked with implementing Service Control Policies (SCPs) in AWS Organizations to enforce a policy that restricts the use of certain high-risk AWS services. Describe how you would design and deploy these SCPs, including specific services you would restrict and the impact on account usage.
You are tasked with implementing Service Control Policies (SCPs) in AWS Organizations to enforce a policy that restricts the use of certain high-risk AWS services. Describe how you would design and deploy these SCPs, including specific services you would restrict and the impact on account usage.
Simulated
A
Deploy SCPs that completely disable all AWS services across all accounts.
0.0%
B
Create SCPs that restrict access to high-risk services such as Amazon S3 public access, AWS Lambda functions with internet access, and Amazon EC2 instances with unrestricted traffic, while allowing other necessary services.
Comments
Loading comments...