Topic 1 Question 516
A company has multiple AWS accounts that are in an organization in AWS Organizations. The company needs to store AWS account activity and query the data from a central location by using SQL.
Which solution will meet these requirements?
Create an AWS CloudTraii trail in each account. Specify CloudTrail management events for the trail. Configure CloudTrail to send the events to Amazon CloudWatch Logs. Configure CloudWatch cross-account observability. Query the data in CloudWatch Logs Insights.
Use a delegated administrator account to create an AWS CloudTrail Lake data store. Specify CloudTrail management events for the data store. Enable the data store for all accounts in the organization. Query the data in CloudTrail Lake.
Use a delegated administrator account to create an AWS CloudTral trail. Specify CloudTrail management events for the trail. Enable the trail for all accounts in the organization. Keep all other settings as default. Query the CloudTrail data from the CloudTrail event history page.
Use AWS CloudFormation StackSets to deploy AWS CloudTrail Lake data stores in each account. Specify CloudTrail management events for the data stores. Keep all other settings as default, Query the data in CloudTrail Lake.
ユーザの投票
コメント(4)
B You can aggregate events within an Organization by enabling it for all accounts in the Organization with AWS CloudTrail Lake.
👍 3kupo7772024/06/29- 正解だと思う選択肢: B
To enable cloudtrail lake, you need to login with admin access to cloudtrail. https://aws.amazon.com/blogs/mt/announcing-aws-cloudtrail-lake-a-managed-audit-and-security-lake/
👍 3Daniel762024/09/17 - 正解だと思う選択肢: B
AWS CloudTrail Lake lets you run SQL-based queries on your events.
👍 2c22ddd82024/07/09
シャッフルモード