Topic 1 Question 65
A company wants to monitor for misconfigured security groups that are allowing unrestricted access to specific ports. Which AWS service will meet this requirement?
AWS Trusted Advisor
Amazon CloudWatch
Amazon GuardDuty
AWS Health Dashboard
ユーザの投票
コメント(17)
This question seems to go a little bit too far into the weeds for what this test is supposed to be. The AWS documentation specifically mentions TrustedAdvisor in the article about unrestricted security groups, but Trusted advisor isn't focused on security specifically like GuardDuty. However, GuardDuty doesn't focus on this issue specifically, either.
A. AWS Trusted Advisor: A service that provides best practices and recommendations for your AWS environment. It includes security checks, such as identifying security groups with unrestricted access.
B. Amazon CloudWatch: A monitoring service, and while it can provide insights into resource utilization and logs, it doesn't specifically focus on identifying misconfigured security groups.
C. Amazon GuardDuty: A threat detection service that continuously monitors for malicious activity and unauthorized behavior in AWS accounts. GuardDuty doesn't specifically perform configuration checks for security groups with unrestricted access.
D. AWS Health Dashboard: Provides information about the status of AWS services. It doesn't typically perform detailed security configuration checks.
👍 21TheFivePips2024/01/24Based on Chat GPT:
C. Amazon GuardDuty
Amazon GuardDuty is an AWS service that is designed to monitor and detect potential security threats in your AWS environment. It helps to identify unusual and unauthorized activities, including misconfigured security groups that may be allowing unrestricted access to specific ports. GuardDuty uses machine learning and threat intelligence to analyze data and generate alerts, making it an effective tool for enhancing the security of your AWS infrastructure.
While options like AWS Trusted Advisor and Amazon CloudWatch offer valuable monitoring capabilities, they do not specifically focus on detecting security group misconfigurations. Therefore, in this scenario, Amazon GuardDuty is the most appropriate choice.
👍 12morccini2023/11/02Correct answer is A.
AWS Trusted Advisor: This service provides real-time guidance to help you provision your resources following AWS best practices. It includes checks for security groups that are allowing unrestricted access to specific ports, among other checks. Trusted Advisor can help you identify and resolve issues related to security groups and other AWS resources.
Amazon GuardDuty: Amazon GuardDuty is a threat detection service that continuously monitors for malicious or unauthorized behavior to help protect your AWS accounts and workloads. It does not specifically focus on monitoring for misconfigured security groups.
👍 4pure_edge2024/03/02
シャッフルモード