ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Security - Specialty SCS-C02 All Questions

View all questions & answers for the AWS Certified Security - Specialty SCS-C02 exam
Go to Exam

Exam AWS Certified Security - Specialty SCS-C02 topic 1 question 47 discussion

Exam question from Amazon's AWS Certified Security - Specialty SCS-C02
Question #: 47
Topic #: 1
[All AWS Certified Security - Specialty SCS-C02 Questions]

A startup company is using a single AWS account that has resources in a single AWS Region. A security engineer configures an AWS CloudTrail trail in the same Region to deliver log files to an Amazon S3 bucket by using the AWS CLI.
Because of expansion, the company adds resources in multiple Regions. The security engineer notices that the logs from the new Regions are not reaching the S3 bucket.
What should the security engineer do to fix this issue with the LEAST amount of operational overhead?

  • A. Create a new CloudTrail trail. Select the new Regions where the company added resources.
  • B. Change the S3 bucket to receive notifications to track all actions from all Regions.
  • C. Create a new CloudTrail trail that applies to all Regions.
  • D. Change the existing CloudTrail trail so that it applies to all Regions.
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by kk2000 at Oct. 7, 2023, 5:30 p.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
kk2000
Highly Voted 1 year, 4 months ago
Correct Answer is D https://docs.aws.amazon.com/awscloudtrail/latest/userguide/receive-cloudtrail-log-files-from-multiple-regions.html
upvoted 10 times
...
Just_Ninja
Most Recent 5 months, 3 weeks ago
Selected Answer: D
An Update is the right solution. Here is the CLI for it :-) aws cloudtrail update-trail --name my-trail --is-multi-region-trail
upvoted 3 times
...
unravikumar
11 months, 3 weeks ago
Selected Answer: D
D is correct
upvoted 1 times
...
Raphaello
1 year ago
Selected Answer: D
Change CloudTrail trail to ne multi-region.
upvoted 1 times
...
brpjp
1 year, 3 months ago
Question is new region trail not reaching to s3 bucket and not trail created from new region.
upvoted 1 times
smanzana
1 year, 1 month ago
But each trail is independent and its region cannot be changed after the initial configuration…and the answer D says “change the trail” not “create a new trail”
upvoted 1 times
...
Aamee
1 year, 2 months ago
Question specifically emphasis on the solution with 'LEAST amount of operational overhead' which is doable only through option D. All other options still involves some kind of operational overhead. Hope it helps..
upvoted 2 times
...
...
ahrentom
1 year, 4 months ago
Selected Answer: D
go with D
upvoted 2 times
...
100fold
1 year, 4 months ago
Selected Answer: D
Agree answer is D. Change the existing CloudTrail using AWS CLI, add the --is-multi-region-trail option to the update-trail command.
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago