exam questions

Exam AWS Certified Security - Specialty SCS-C02 All Questions

View all questions & answers for the AWS Certified Security - Specialty SCS-C02 exam

Exam AWS Certified Security - Specialty SCS-C02 topic 1 question 133 discussion

A company has decided to move its fleet of Linux-based web server instances to an Amazon EC2 Auto Scaling group. Currently, the instances are static and are launched manually. When an administrator needs to view log files, the administrator uses SSH to establish a connection to the instances and retrieves the logs manually.

The company often needs to query the logs to produce results about application sessions and user issues. The company does not want its new automatically scaling architecture to result in the loss of any log files when instances are scaled in.

Which combination of steps should a security engineer take to meet these requirements MOST cost-effectively? (Choose two.)

  • A. Configure a cron job on the instances to forward the log files to Amazon S3 periodically.
  • B. Configure AWS Glue and Amazon Athena to query the log files.
  • C. Configure the Amazon CloudWatch agent on the instances to forward the logs to Amazon CloudWatch Logs.
  • D. Configure Amazon CloudWatch Logs Insights to query the log files.
  • E. Configure the instances to write the logs to an Amazon Elastic File System (Amazon EFS) volume.
Show Suggested Answer Hide Answer
Suggested Answer: CD 🗳️

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
nischal77777
3 months, 2 weeks ago
Selected Answer: CD
My answer is C & D
upvoted 1 times
...
aescudero51
5 months, 4 weeks ago
Selected Answer: CD
My answer is C & D Configure the Amazon CloudWatch agent on the instances to forward the logs to Amazon CloudWatch Logs: This approach ensures that log files are automatically collected and stored in Amazon CloudWatch Logs, which can be queried using CloudWatch Logs Insights. This method is cost-effective because it leverages Amazon CloudWatch, which is included in the cost of running EC2 instances. Configure CloudWatch Logs Insights to query the log files: CloudWatch Logs Insights is a fully managed service that allows you to query and analyze log data in real-time. It is integrated with Amazon CloudWatch Logs, making it a natural choice for querying log files.
upvoted 3 times
...
3a214ce
6 months, 1 week ago
Selected Answer: CD
No need of Amazon Athena to query logs in CloudWatch Logs, rather use Amazon Logs CloudWatch Insights.
upvoted 3 times
...
Certified101
6 months, 2 weeks ago
Selected Answer: CD
C & D are correct
upvoted 2 times
...
Nash101
6 months, 2 weeks ago
C&D CloudWatch Agent for Centralized Logging: The CloudWatch agent provides a reliable and efficient way to collect logs from the EC2 instances and send them to a central location, CloudWatch Logs. This eliminates the need for manual log retrieval via SSH and ensures logs are collected even during scaling events. CloudWatch Logs Insights for Cost-Effective Analysis: CloudWatch Logs Insights is a serverless log query service built on top of CloudWatch Logs. It allows you to analyze log data at scale without the need for additional infrastructure or complex data warehousing solutions. This offers a cost-effective approach for querying and analyzing the log data stored in CloudWatch Logs.
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...