PrepAway - Latest Free Exam Questions & Answers

Which of the following will meet the Customer requirement?

A customer wants to track access to their Amazon Simple Storage Service (S3) buckets and
also use this information for their internal security and access audits. Which of the following
will meet the Customer requirement?

PrepAway - Latest Free Exam Questions & Answers

A.
Enable AWS CloudTrail to audit all Amazon S3 bucket access.

B.
Enable server access logging for all required Amazon S3 buckets.

C.
Enable the Requester Pays option to track access via AWS Billing

D.
Enable Amazon S3 event notifications for Put and Post.

Explanation:
If its just for internal audit, then Server access logging, I assume is sufficient:
http://docs.aws.amazon.com/AmazonS3/latest/dev/ServerLogs.html
For external audits I would go for CloudTrail:
http://docs.aws.amazon.com/AmazonS3/latest/dev/cloudtrail-logging.html

2 Comments on “Which of the following will meet the Customer requirement?

  1. levyagr says:

    A seems correct

    “You can use AWS CloudTrail logs together with server access logs for Amazon S3. CloudTrail logs provide you with detailed API tracking for Amazon S3 bucket-level and object-level operations, while server access logs for Amazon S3 provide you visibility into object-level operations on your data in Amazon S3. For more information about server access logs, see Server Access Logging.”




    0



    1

Leave a Reply

Your email address will not be published. Required fields are marked *