Multiple Choice
An application has been written that publishes custom metrics to Amazon CloudWatch. Recently, IAM changes have been made on the account and the metrics are no longer being reported. Which of the following is the LEAST permissive solution that will allow the metrics to be delivered?
A) Add a statement to the IAM policy used by the application to allow logs:putLogEvents and logs:createLogStream Add a statement to the IAM policy used by the application to allow logs:putLogEvents and logs:createLogStream
B) Modify the IAM role used by the application by adding the CloudWatchFullAccess managed policy. Modify the IAM role used by the application by adding the CloudWatchFullAccess managed policy.
C) Add a statement to the IAM policy used by the application to allow cloudwatch:putMetricData . Add a statement to the IAM policy used by the application to allow cloudwatch:putMetricData .
D) Add a trust relationship to the IAM role used by the application for cloudwatch.amazonaws.com . Add a trust relationship to the IAM role used by the application for cloudwatch.amazonaws.com
Correct Answer:
Verified
Correct Answer:
Verified
Q127: A security engineer has enabled AWS Security
Q128: A company has a few dozen application
Q129: A company uses Amazon RDS for MySQL
Q130: What is the function of the following
Q131: A large company has hundreds of AWS
Q133: An application has a requirement to be
Q134: A company has two AWS accounts, each
Q135: A company is building a data lake
Q136: A Security Engineer is implementing a solution
Q137: A pharmaceutical company has digitized versions of