During a security event, it is discovered that some Amazon EC2 instances have not been sending Amazon CloudWatch logs. Which steps can the Security Engineer take to troubleshoot this issue? (Choose two.)
A) Connect to the EC2 instances that are not sending the appropriate logs and verify that the CloudWatch Logs agent is running.
B) Log in to the AWS account and select CloudWatch Logs. Check for any monitored EC2 instances that are in the "Alerting" state and restart them using the EC2 console.
C) Verify that the EC2 instances have a route to the public AWS API endpoints.
D) Connect to the EC2 instances that are not sending logs. Use the command prompt to verify that the right permissions have been set for the Amazon SNS topic.
E) Verify that the network access control lists and security groups of the EC2 instances have the access to send logs over SNMP.
Correct Answer:
Verified
Q53: A Security Architect is evaluating managed solutions
Q54: A company has a forensic logging use
Q55: A company has two AWS accounts, each
Q56: A Security Engineer must add additional protection
Q57: In response to the past DDoS attack
Q59: A company plans to move most of
Q60: A Security Engineer must design a system
Q61: A Security Engineer for a large company
Q62: A company had one of its Amazon
Q63: A company has five AWS accounts and
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents