A company monitors its account activity using AWS CloudTrail, and is concerned that some log files are being tampered with after the logs have been delivered to the account's Amazon S3 bucket. Moving forward, how can the SysOps Administrator confirm that the log files have not been modified after being delivered to the S3 bucket.
A) Stream the CloudTrail logs to Amazon CloudWatch to store logs at a secondary location.
B) Enable log file integrity validation and use digest files to verify the hash value of the log file.
C) Replicate the S3 log bucket across regions, and encrypt log files with S3 managed keys.
D) Enable S3 server access logging to track requests made to the log bucket for security audits.
Correct Answer:
Verified
Q928: A SysOps Administrator must secure AWS CloudTrail
Q929: A company is running multiple AWS Lambda
Q930: Two companies will be working on several
Q931: A company runs a web application that
Q932: A SysOps Administrator noticed that the cache
Q934: A SysOps Administrator is in the process
Q935: A company has an application running on
Q936: A SysOps Administrator is running an automatically
Q937: A SysOps Administrator needs an Amazon EBS
Q938: A company using AWS Organizations requires that
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents