Multiple Choice
A DevOps engineer is scheduling legacy AWS KMS keys for deletion and has created a remediation AWS Lambda function that will re-enable a key if necessary. The engineer wants to automate this process with available AWS CloudTrail data so, if a key scheduled for deletion is in use, it will be re-enabled. Which solution enables this automation?
A) Create an Amazon CloudWatch Logs metric filter and alarm for KMS events with an error message. Set the remediation Lambda function as the target of the alarm.
B) Create an Amazon CloudWatch Logs metric filter and alarm for KMS events with an error message. Create an Amazon SNS topic as the target of the alarm. Subscribe the remediation Lambda function to the SNS topic.
C) Create an Amazon CloudWatch Events rule pattern looking for KMS service events with an error message. Create an Amazon SNS topic as the target of the rule. Subscribe the remediation Lambda function to the SNS topic.
D) Use Amazon CloudTrail to alert for KMS service events with an error message. Set the remediation Lambda function as the target of the rule.
Correct Answer:
Verified
Correct Answer:
Verified
Q583: Which major database needs a BYO license?<br>A)
Q584: You have a high-traffic application running behind
Q585: A company used AWS CloudFormation to deploy
Q586: You are building a Docker image with
Q587: For AWS Auto Scaling, what is the
Q589: An application's users are encountering bugs immediately
Q590: What is the scope of an EC2
Q591: You want to set up the CloudTrail
Q592: A company's application is running on Amazon
Q593: Your Company wants to perform A/B testing