Multiple Choice
A production account has a requirement that any Amazon EC2 instance that has been logged into manually must be terminated within 24 hours. All applications in the production account are using Auto Scaling groups with Amazon CloudWatch Logs agent configured. How can this process be automated?
A) Create a CloudWatch Logs subscription to an AWS Step Functions application. Configure the function to add a tag to the EC2 instance that produced the login event and mark the instance to be decommissioned. Then create a CloudWatch Events rule to trigger a second AWS Lambda function once a day that will terminate all instances with this tag.
B) Create a CloudWatch alarm that will trigger on the login event. Send the notification to an Amazon SNS topic that the Operations team is subscribed to, and have them terminate the EC2 instance within 24 hours.
C) Create a CloudWatch alarm that will trigger on the login event. Configure the alarm to send to an Amazon SQS queue. Use a group of worker instances to process messages from the queue, which then schedules the Amazon CloudWatch Events rule to trigger.
D) Create a CloudWatch Logs subscription in an AWS Lambda function. Configure the function to add a tag to the EC2 instance that produced the login event and mark the instance to be decommissioned. Create a CloudWatch Events rule to trigger a daily Lambda function that terminates all instances with this tag.
Correct Answer:
Verified
Correct Answer:
Verified
Q68: An Information Security policy requires that all
Q69: Ansible provides some methods for controlling how
Q70: A DevOps Engineer must automate a weekly
Q71: A DevOps Engineer needs to back up
Q72: You have an application which consists of
Q74: A company has multiple development teams sharing
Q75: A company must ensure consistent behavior of
Q76: An application is running on Amazon EC2.
Q77: A developer has written an application that
Q78: You are building a large, multi-tenant SaaS