An Amazon EC2 Auto Scaling group launches Amazon Linux EC2 instances and installs the Amazon CloudWatch agent to publish logs to Amazon CloudWatch Logs. The EC2 instances launch with an IAM role that has an IAM policy attached. The policy provides access to publish custom metrics to CloudWatch. The EC2 instances run in a private subnet inside a VPC The VPC provides access to the internet for private subnets through a NAT gateway.
A security engineer notices that no logs are being published to CloudWatch Logs for the EC2 instances that the Auto Scaling group launches. The security engineer validates that the CloudWatch Logs agent is running and is configured properly on the EC2 instances. In addition, the security engineer validates that network communications are working properly to AWS services.
What can the security engineer do to ensure that the logs are published to CloudWatch Logs?
IPLogic
16 hours, 40 minutes agoIPLogic
16 hours, 36 minutes agoericxw
2 weeks, 5 days agomzeynalli
3 weeks, 3 days agoDSExam
1 month agopagom
1 month agodiv05jkjl
1 month, 3 weeks agoLingo43
3 months agoxTrayusx
4 months agohelloworldabc
2 months, 2 weeks agonavid1365
4 months, 1 week ago1923
4 months, 2 weeks agoaescudero51
5 months, 4 weeks agoCertified101
6 months, 2 weeks agoZek
6 months, 3 weeks agodanish1234
6 months, 3 weeks agokrishnavamshireddy
6 months, 4 weeks ago