Q29 — AWS SAA-C03 Ch.2

Question 29 of 65 | ← Chapter 2

Q94. A company uses AWS Organizations to manage multiple AWS accounts for different departments. The management account has an Amazon S3 bucket that contains project reports. The company wants to limit access to this S3 bucket to only users of accounts within the organization in AWS Organizations. Which solution meets these requirements with the LEAST amount of operational overhead?

Correct Answer: A. Add the aws:PrincipalOrglD global condition key with a reference to the organization ID to the s3 bucket policy