Your security team wants to mitigate the risk of mismanagement and compromise of user-managed service account keys. You need to enforce a policy that prevents developers from creating these keys for projects across your entire organization. What is the recommended enforcement method?