A security team want to limit access to specific services or actions in all of the team’s AWS accounts. All accounts belong to a large organization in AWS Organizations. The solution must be scalable and there must be a single point where permission can be maintained.
What should a solutions architect do to accomplish this?
A . Create an ACL to provide access to the services or actions.
B . Create a security group to allow accounts and attach it to user groups.
C . Create cross-account roles in each account to deny access to the services or actions.
D . Create a service control policy in the root organizational unit to deny access to the services or actions.
Answer: D
Latest SAA-C02 Dumps Valid Version with 230 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund