From the course: AWS Certified Security - Specialty (SCS-C03) Cert Prep

Unlock this course with a free trial

Join today to access over 25,600 courses taught by industry experts.

AWS Organizations and Control Tower Exam Cram

AWS Organizations and Control Tower Exam Cram - Amazon Web Services (AWS) Tutorial

From the course: AWS Certified Security - Specialty (SCS-C03) Cert Prep

Start my 1-month free trial Buy for my team

AWS Organizations and Control Tower Exam Cram

Hey guys, welcome to another exam cram. In this one, I'm covering AWS Organizations and Control Tower. Organizations enable centralized management and governance of multiple accounts, and you can apply service control policies, tag policies, and use consolidated billing. Accounts can be programmatically created using the Organizations API. SCPs can control tagging and the available API actions. SCPs are principle centric controls. They create a permissions guardrail or set limits on the maximum permissions available to principles in your member accounts. That can include specifying which services users and roles can access, which resources they can access, or the conditions under which they can make requests. Resource control policies, RCPs, are resource centric controls. They create a permissions guardrail or set limits on the maximum permissions available for resources in your member accounts. So use an RCP when you want to centrally enforce consistent access controls across…

Contents