A company has several member accounts that are in an organization in flaws Organizations. The company recently discovered that administrators have been using account root user credentials. The company must prevent the administrators from using root user credentials to perform any actions on Amazon EC2 instances. What should a SysOps administrator do to meet this requirement? A. Create an identity-based IAM policy in each member account to deny actions on EC2 instances by the root user. B. In the organization's management account, create a service control policy (SCP) to deny actions on EC2 instances by the root user in all member accounts. C. Use flaws Config to prevent any actions on EC2 instances by the root user. D. Use Amazon Inspector in each member account to scan for root user logins and to prevent any actions on EC2 instances by the root user. Â Correct Answer: A This question is in SOA-C02 exam For getting AWS Certified SysOps Administrator - Associate
Please login or Register to submit your answer
