A company has enabled AWS CloudTrail logs to deliver log files to an Amazon S3 bucket for each of its developer accounts. The company has created a central AWS account for streamlining management and audit reviews. An internal auditor needs to access the CloudTrail logs yet access needs to be restricted for all developer account users. The solution must be secure and optimized
How should a solutions architect meet these requirements?
A . Configure an AWS Lambda function m each developer account to copy the log files to the central account Create an 1AM role in the central account for the auditor Attach an 1AM policy providing read-only permissions to the bucket
B . Configure CloudTrail from each developer account to deliver the log files to an S3 bucket m the central account Create an 1AM user in the central account for the auditor Attach an 1AM policy providing full permissions to the bucket
C . Configure CloudTrail from each developer account to deliver the log files to an S3 bucket in the central account Create an 1AM role in the central account for the auditor Attach an I AM policy providing read-only permissions to the bucket
D . Configure an AWS Lambda function in the central account to copy the log files from the S3 bucket m each developer account Create an 1AM user m the central account for the auditor Attach an 1AM policy providing full permissions to the bucket
Answer: C
Latest SAA-C02 Dumps Valid Version with 230 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund