A company's Auditor implemented a compliance requirement that all Amazon S3 buckets must have logging enabled. How should the SysOps Administrator ensure this compliance requirement is met, while still permitting Developers to create and use new S3 buckets?
A) Add AWS CloudTrail logging for the S3 buckets.
B) Implement IAM policies to allow only the Storage team to create S3 buckets.
C) Add the AWS Config managed rule S3_BUCKET_LOGGING_ENABLED. Add the AWS Config managed rule S3_BUCKET_LOGGING_ENABLED.
D) Create an AWS Lambda function to delete the S3 buckets if logging is not turned on.
Correct Answer:
Verified
Q759: A user has created a VPC with
Q760: A user has enabled detailed CloudWatch monitoring
Q761: A SysOps Administrator is responsible for managing
Q762: A SysOps Administrator has been able to
Q763: A SysOps Administrator needs Amazon EC2 instances
Q765: What is a "vault" in Amazon Glacier?
A)
Q766: A web application accepts orders from online
Q767: Which of the following comes before Auto
Q768: You need to determine what encryption operations
Q769: When the AWS Cloud infrastructure experiences an
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents