How can the Security Engineer provide the Developer with Amazon S3 access without affecting other accounts?

A Developer signed in to a new account within an AWS Organizations organizations unit (OU) containing multiple accounts.

Access to the Amazon S3 service is restricted with the following SCP:

How can the Security Engineer provide the Developer with Amazon S3 access without affecting other accounts?
A . Move the SCP to the root OU of Organizations to remove the restriction to access Amazon S3.
B . Add an IAM policy for the Developer, which grants S3 access.
C . Create a new OU without applying the SCP restricting S3 access. Move the Developer account to this new O
E . Add an allow list for the Developer account for the S3 service.

Answer: B

Latest SCS-C01 Dumps Valid Version with 470 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments