A company wants to create an automated solution for all accounts managed by AWS Organizations...

Amazon Web Services SOA-C02 Question Answer

A company wants to create an automated solution for all accounts managed by AWS Organizations to detect any worry groups that urn 0.0.0.0/0 as the source address for inbound traffic. The company also wants to automatically remediate any noncompliant security groups by restricting access to a specific CIDR block corresponds with the company's intranet.

Create an AWS Config rule to detect noncompliant security groups. Set up automatic remediation to change the 0.0.0.0/0 source address to the approved CIDK block.

Create an IAM policy to deny the creation of security groups that have 0.0.0.0/0 as the source address Attach this 1AM policy to every user in the company.

Create an AWS Lambda function to inspect now and existing security groups check for a noncompliant 0.0.0.0A) source address and change the source address to the approved CIDR block.

Create a service control policy (SCP) for the organizational unit (OU) to deny the creation of security groups that have the 0.0.0.0/0 source address. Set up automatic remediation to change Vie 0.0.0.0/0 source address to the approved CIDR block.

Amazon Web Services SOA-C02 View All Questions

Amazon Web Services SOA-C02 Summary

Vendor: Amazon Web Services
Product: SOA-C02
Update on: Jul 30, 2025
Questions: 556

Price: $52.5 ~~$149.99~~

Buy Now SOA-C02 PDF + Testing Engine Pack

A company maintains a large set of sensitive data in an Amazon S3 bucket.

The company needs to increase IOPS for two EC2 instances with gp2 volumes to support...

Summer Special Sale Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: vce65

A company wants to create an automated solution for all accounts managed by AWS Organizations...

The Answer Is:

Explanation:

Amazon Web Services SOA-C02 Summary

Payments We Accept

Contact Us