An organization is using Amazon CloudWatch Logs with agents deployed on its Linux Amazon EC2 instances. The agent configuration files have been checked and the application log files to be pushed are configured correctly. A review has identified that logging from specific instances is missing. Which steps should be taken to troubleshoot the issue? (Choose two.)
A) Use an EC2 run command to confirm that the "awslogs" service is running on all instances.
B) Verify that the permissions used by the agent allow creation of log groups/streams and to put log events.
C) Check whether any application log entries were rejected because of invalid time stamps by reviewing /var/cwlogs/rejects.log.
D) Check that the trust relationship grants the service "cwlogs.amazonaws.com" permission to write objects to the Amazon S3 staging bucket.
E) Verify that the time zone on the application servers is in UTC.
Correct Answer:
Verified
Q125: A company has enabled Amazon GuardDuty in
Q126: An organization receives an alert that indicates
Q127: A Security Administrator at a university is
Q128: A corporate cloud security policy states that
Q129: The Security team believes that a former
Q131: What are the MOST secure ways to
Q132: The Security Engineer for a mobile game
Q133: A Security Engineer discovered a vulnerability in
Q134: An Amazon EC2 instance is part of
Q135: A Security Engineer is looking for a
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents