ExamGecko
Question list
Search
Search

List of questions

Search

Related questions











Question 860 - SAP-C01 discussion

Report
Export

A company wants to ensure that the workloads for each of its business units have complete autonomy and a minimal blast radius in AWS. The Security team must be able to control access to the resources and services in the account to ensure that particular services are not used by the business units.

How can a Solutions Architect achieve the isolation requirements?

A.
Create individual accounts for each business unit and add the account to an OU in AWS Organizations. Modify the OU to ensure that the particular services are blocked. Federate each account with an IdP, and create separate roles for the business units and the Security team.
Answers
A.
Create individual accounts for each business unit and add the account to an OU in AWS Organizations. Modify the OU to ensure that the particular services are blocked. Federate each account with an IdP, and create separate roles for the business units and the Security team.
B.
Create individual accounts for each business unit. Federate each account with an IdP and create separate roles and policies for business units and the Security team.
Answers
B.
Create individual accounts for each business unit. Federate each account with an IdP and create separate roles and policies for business units and the Security team.
C.
Create one shared account for the entire company. Create separate VPCs for each business unit. Create individual IAM policies and resource tags for each business unit. Federate each account with an IdP, and create separate roles for the business units and the Security team.
Answers
C.
Create one shared account for the entire company. Create separate VPCs for each business unit. Create individual IAM policies and resource tags for each business unit. Federate each account with an IdP, and create separate roles for the business units and the Security team.
D.
Create one shared account for the entire company. Create individual IAM policies and resource tags for each business unit. Federate the account with an IdP, and create separate roles for the business units and the Security team.
Answers
D.
Create one shared account for the entire company. Create individual IAM policies and resource tags for each business unit. Federate the account with an IdP, and create separate roles for the business units and the Security team.
Suggested answer: A
asked 16/09/2024
Chris Abunin
28 questions
User
Your answer:
0 comments
Sorted by

Leave a comment first