Multiple Choice
Unapproved changes were previously made to a company's Amazon S3 bucket. A security engineer configured AWS Config to record configuration changes made to the company's S3 buckets. The engineer discovers there are S3 configuration changes being made, but no Amazon SNS notifications are being sent. The engineer has already checked the configuration of the SNS topic and has confirmed the configuration is valid. Which combination of steps should the security engineer take to resolve the issue? (Choose two.)
A) Configure the S3 bucket ACLs to allow AWS Config to record changes to the buckets.
B) Configure policies attached to S3 buckets to allow AWS Config to record changes to the buckets.
C) Attach the AmazonS3ReadOnlyAccess managed policy to IAM User.
D) Verify the security engineer's IAM user has an attached policy that allows all AWS Config actions.
E) Assign the AWSConfigRole managed policy to the AWS Config role.
Correct Answer:
Verified
Correct Answer:
Verified
Q178: A company is hosting a web application
Q179: Two Amazon EC2 instances in different subnets
Q180: An application has been built with Amazon
Q181: An Application Developer is using an AWS
Q182: Example.com hosts its internal document repository on
Q184: An employee accidentally exposed an AWS access
Q185: A company's security policy requires that VPC
Q186: In response to the past DDoS attack
Q187: A developer reported that AWS CloudTrail was
Q188: A Security Engineer for a large company