Multiple Choice
Changes made to a security group attached to an Application Load Balancer resulted in connectivity issues for a company's production web application. The Network Engineer needs to lock down permissions for the company's AWS account, automate auditing for any changes, and set up notifications. What actions should accomplish this?
A) Configure IAM user policies to lock down permissions for specific users. Enable AWS CloudTrail to identify API calls from users. Use AWS Config to audit any changes, and configure Amazon SNS to send notifications.
B) Configure IAM user policies to lock down permissions for specific users. Enable AWS CloudTrail to identify the API calls from users. Configure AWS CodeCommit to audit any changes in configurations, and configure Amazon SNS to send notifications.
C) Configure IAM user policies to lock down permissions for specific users. Enable AWS CloudTrail to identify the API calls from users. Configure Amazon Macie to use machine learning to identify any configuration changes, and configure Amazon SNS to send notifications.
D) Configure IAM role policies to lock down permissions for specific users. Configure Amazon GuardDuty to audit and monitor configuration changes, and configure Amazon SNS to send notifications.
Correct Answer:
Verified
Correct Answer:
Verified
Q168: If you have one VPC peered with
Q169: You are deploying an EC2 instance in
Q170: Over which of the following Ethernet standards
Q171: An organization wants to process sensitive information
Q172: A company has deployed a production environment
Q174: What port and protocol is used by
Q175: A user is running a batch process
Q176: Use _ to get more visibility into
Q177: Which of the following services is used
Q178: You can use the _ command of