Amazon Exam SOA-C02 Topic 3 Question 3 Discussion

Actual exam question for Amazon's SOA-C02 exam

Question #: 3
Topic #: 3

A company using AWS Organizations requires that no Amazon S3 buckets in its production accounts should ever be deleted.

What is the SIMPLEST approach the SysOps Administrator can take to ensure S3 buckets in those accounts can never be deleted?

ASet up MFA Delete on all the S3 buckets to prevent the buckets from being ddeleted.

BUse service control policies to deny the s3:DeleteBucket action on all buckets in production accounts.

CCreate an IAM group that has an IAM policy to deny the s3:DeleteBucket action on all buckets in production accounts.

DUse AWS Shield to deny the s3:DeleteBucket action on the AWS account instead of all S3 buckets.

Show Suggested Answer

Suggested Answer: B

by Tarra at May 04, 2022, 01:18 PM

Limited Time Offer

25%

Off

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!