Which of these solutions would you recommend?

You currently operate a web application In the AWS US-East region The application runs on an autoscaled layer of EC2 instances and an RDS Multi-AZ database Your IT security compliance officer has tasked you to develop a reliable and durable logging solution to track changes made to your EC2.1AM And RDS resources. The solution must ensure the integrity and confidentiality of your log data.

Which of these solutions would you recommend?
A .  Create a new CloudTrail trail with one new 53 bucket to store the logs and with the global services option selected Use lAM roles 53 bucket policies and Multi Factor Authentication (MFA) Delete on the 53 bucket that stores your logs.
B . Create a new CloudTrail with one new 53 bucket to store the logs Configure SNS to send log file delivery notifications to your management system Use lAM roles and 53 bucket policies on the 53bucket mat stores your logs.
C . Create a new CloudTrail trail with an existing 53 bucket to store the logs and with the global services option selected Use 53 ACLs and Multi Factor Authentication (MFA) Delete on the 53 bucket that stores your logs.
D . Create three new CloudTrail trails with three new 53 buckets to store the logs one for the AWS Management console, one for AWS 5DKs and one for command line tools Use lAM roles and 53bucket policies on the 53 buckets that store your logs.

Answer: A

Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments