The Security Engineer created a new AWS Key Management Service (AWS KMS) key with the following key policy:

September 14, 2021 by Admin

The Security Engineer created a new AWS Key Management Service (AWS KMS) key with the following key policy:

SCS-C01 AWS Certified Security – Specialty Part 03 Q11 011

SCS-C01 AWS Certified Security – Specialty Part 03 Q11 011

What are the effects of the key policy? (Choose two.)

  • The policy allows access for the AWS account 111122223333 to manage key access though IAM policies.
  • The policy allows all IAM users in account 111122223333 to have full access to the KMS key.
  • The policy allows the root user in account 111122223333 to have full access to the KMS key.
  • The policy allows the KMS service-linked role in account 111122223333 to have full access to the KMS key.
  • The policy allows all IAM roles in account 111122223333 to have full access to the KMS key.

Leave a Reply