{"id":41,"date":"2022-02-07T18:05:33","date_gmt":"2022-02-07T18:05:33","guid":{"rendered":"https:\/\/exampracticetests.com\/aws\/SysOps_Administrator_Associate_SOA-C02\/aws-certified-sysops-administrator-associate-soa-c02-question33\/"},"modified":"2022-02-07T18:05:33","modified_gmt":"2022-02-07T18:05:33","slug":"aws-certified-sysops-administrator-associate-soa-c02-question33","status":"publish","type":"post","link":"https:\/\/exampracticetests.com\/aws\/SysOps_Administrator_Associate_SOA-C02\/aws-certified-sysops-administrator-associate-soa-c02-question33\/","title":{"rendered":"AWS Certified SysOps Administrator Associate SOA-C02 – Question33"},"content":{"rendered":"
A large company is using AWS Organizations to manage its multi-account AWS environment. According to company policy, all users should have read-level access to a particular Amazon S3 bucket in a central account. The S3 bucket data should not be available outside the organization. A SysOps administrator must set up the permissions and add a bucket policy to the S3 bucket.
\nWhich parameters should be specified to accomplish this in the MOST efficient manner?

A.<\/strong> Specify "*" as the principal and PrincipalOrgId as a condition.
B.<\/strong> Specify all account numbers as the principal.
C.<\/strong> Specify PrincipalOrgId as the principal.
D.<\/strong> Specify the organization's master account as the principal.<\/div>\n

<\/p>\n