Topic 1 Question 74
A company requires that all activity in its AWS account be logged using AWS CloudTrail. Additionally, a SysOps administrator must know when CloudTrail log files are modified or deleted. How should the SysOps administrator meet these requirements?
Enable log file integrity validation. Use the AWS CLI to validate the log files.
Enable log file integrity validation. Use the AWS CloudTrail Processing Library to validate the log files.
Use CloudTrail Insights to monitor the log files for modifications.
Use Amazon CloudWatch Logs to monitor the log files for modifications.
ユーザの投票
コメント(10)
- 正解だと思う選択肢: A
The answer is A! The CloudTrail Processing Library is a Java library that provides an easy way to process AWS CloudTrail logs. You provide configuration details about your CloudTrail SQS queue and write code to process events. The CloudTrail Processing Library does the rest. It polls your Amazon SQS queue, reads and parses queue messages, downloads CloudTrail log files, parses events in the log files, and passes the events to your code as Java objects.
👍 3princajen2022/09/01 Looks like the answer is A https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-log-file-validation-intro.html
👍 2Flosuccess2022/08/31- 正解だと思う選択肢: A
Answer can only be A. How to use CLI -> https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-log-file-validation-cli.html
👍 2haxaffee2022/09/04
シャッフルモード