🔥 3-day streak
AWS Certified Security - Specialty75 / 184
Question 75 of 184
A company uses AWS IAM Identity Center (successor to AWS SSO) with an external SAML 2.0 identity provider. A security engineer creates a permission set named 'DataAnalyst' and assigns a group to it across 12 member accounts in the organization. Two weeks later, the engineer edits the inline policy inside the DataAnalyst permission set to add read access to a new S3 bucket. However, users report that the new S3 permissions are not taking effect in any of the accounts. What is the MOST likely cause and correct action?
Reviewed for accuracy · Report an issueNext question