A company uses federated access for its AWS environment. The available roles are created and managed using AWS CloudFormation from CI/CD pipeline. All changes should be made to the IAM roles through the pipeline. The security team found that changes are being made to the roles out-of-band and would like to detect when this occurs. Which action will accomplish this?
A) Use Amazon Inspector rules to detect and notify when a CloudFormation stack has a configuration change.
B) Use an AWS Trusted Advisor CloudWatch Events rule to detect and notify when a CloudFormation stack has a configuration change.
C) Use AWS CloudTrail to detect and notify when a CloudFormation stack has detected a configuration change.
D) Use an AWS Config rule to detect and notify when a CloudFormation stack has detected a configuration change.
Correct Answer:
Verified
Q481: A company uses AWS Organizations to manage
Q482: A company wants to ensure that their
Q483: A company uses AWS KMS with CMKs
Q484: A DevOps Engineer has a single Amazon
Q485: A company runs an application consisting of
Q487: A company has multiple development teams sharing
Q488: A company recently launched an application that
Q489: You have an application which consists of
Q490: A Development team wants to deploy an
Q491: A company has multiple child accounts that
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents