An organization has setup multiple IAM users. The organization wants that each IAM user accesses the IAM console only within the organization and not from outside. How can it achieve this?
A) Create an IAM policy with the security group and use that security group for AWS console login
B) Create an IAM policy with a condition which denies access when the IP address range is not from the organization
C) Configure the EC2 instance security group which allows traffic only from the organization's IP range
D) Create an IAM policy with VPC and allow a secure gateway between the organization and AWS Console

Question

Quizplus · Accepted Answer

An IAM policy can be created with a condition that denies access when the request comes from an IP address range that is not within the organization's specified range. This ensures that IAM users can only access the console from within the organization.

An Organization Has Setup Multiple IAM Users