SCS-C02 Domain 3: Identity and Access Management

An audit found gaps: the organization must use IAM Access Analyzer for external access. Which option addresses this? use IAM Access Analyzer for external access.

Multiple choice — select one answer

Answer choices

  1. a. IAM permission boundaries
  2. b. Access Analyzer
  3. c. IAM MFA policies
  4. d. IAM Identity Center with external IdP

Architectural breakdown & explanation

Access Analyzer finds unintended public/cross-account access.

Correct answer(s): b. Access Analyzer

Exam domain: Domain 3: Identity and Access Management (20% weight on the official guide).

Official documentation & study links

Practice this certification

This page is one question from the AWS Certified Security – Specialty bank. Run a full timed practice exam with domain-weighted random questions in your browser.