A company uses AWS Organizations and has many AWS accounts. The company has a new requirement to use server-side encryption with customer-provided keys (SSE-C) on all new object uploads to Amazon S3 buckets.
A security engineer is creating an SCP that includes a Deny effect for the s3:PutObject action.
Which condition must the security engineer add to the SCP to enforce the new SSE-C requirement?
HappyG
3 days, 13 hours agoHappyG
3 days, 13 hours ago5409b91
4 months, 3 weeks agoxekiva3329
5 months, 2 weeks agofibonacciname
6 months, 2 weeks agoZek
6 months, 3 weeks ago