A company requires that all logs are captured for everything that runs in the company's AWS account. The account has multiple VPCs with Amazon EC2 instances, Application Load Balancers, Amazon RDS MySQL databases, and AWS WAF rules that are configured. The logs must be protected from deletion. The company also needs a daily visual analysis of log anomalies from the previous day. Which combination of actions should a DevOps engineer take to meet these requirements? (Choose three.)
A) Configure an AWS Lambda function to send all Amazon CloudWatch logs to an Amazon S3 bucket. Create a dashboard report in Amazon QuickSight.
B) Configure AWS CloudTrail to send all logs to Amazon Inspector. Create a dashboard report in Amazon QuickSight.
C) Configure Amazon S3 MFA Delete on the logging S3 bucket.
D) Configure an Amazon S3 Object Lock legal hold on the logging S3 bucket.
E) Configure AWS Artifact to send all logs to the logging Amazon S3 bucket. Create a dashboard report in Amazon QuickSight.
F) Deploy the Amazon CloudWatch agent to all EC2 instances.
Correct Answer:
Verified
Q595: A business has an application that consists
Q596: A company requires an RPO of 2 hours
Q597: What flag would you use to limit
Q598: What is the only layer in a
Q599: When thinking of AWS Elastic Beanstalk, which
Q601: Which of these configuration or deployment practices
Q602: As CloudTrail sends a notification each time
Q603: A company updated the AWS CloudFormation template
Q604: A company is using tagging to allocate
Q605: A company wants to use AWS development
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents