🔥 3-day streak
AWS Certified Security - Specialty121 / 157
Question 121 of 157

A security engineer at a financial services company manages an AWS Organization with all features enabled and Control Tower deployed. Recently, an administrator in a member account attempted to remove that account from the organization using the LeaveOrganization API, which would have bypassed centralized guardrails and billing consolidation. The engineer must ensure that member account administrators can never detach their accounts from the organization, while still allowing normal workloads to function. Which approach best meets this requirement?

Reviewed for accuracy · Report an issueNext question