ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS-SysOps All Questions

View all questions & answers for the AWS-SysOps exam
Go to Exam

Exam AWS-SysOps topic 1 question 808 discussion

Exam question from Amazon's AWS-SysOps
Question #: 808
Topic #: 1
[All AWS-SysOps Questions]

A SysOps Administrator needs to monitor all the object upload and download activity of a single Amazon S3 bucket. Monitoring must include tracking the AWS account of the caller, the IAM user role of the caller, the time of the API call, and the IP address of the API.
Where can the Administrator find this information?

  • A. AWS CloudTrail data event logging
  • B. AWS CloudTrail management event logging
  • C. Amazon Inspector bucket event logging
  • D. Amazon Inspector user event logging
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by nicat at May 10, 2020, 4:32 a.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
nicat
Highly Voted 2 years, 7 months ago
A. AWS CloudTrail data event logging
upvoted 12 times
...
albert_kuo
Most Recent 9 months, 1 week ago
Selected Answer: A
Data event logging in AWS CloudTrail provides information about the resource-level operations performed on Amazon S3 objects, such as object uploads and downloads. Data event logs capture information about the AWS account of the caller, the IAM user or role of the caller, the time of the API call, and the IP address of the API. To track object upload and download activity in an Amazon S3 bucket and obtain the required information (AWS account, IAM user or role, time of the API call, and IP address), the SysOps Administrator should enable data event logging for the S3 bucket in AWS CloudTrail.
upvoted 1 times
albert_kuo
6 months ago
Management Events Examples: Creating, deleting, or modifying AWS resources such as EC2 instances, S3 buckets, RDS databases, or IAM users and roles.
upvoted 1 times
albert_kuo
6 months ago
Data Events Examples: Read and write actions on S3 objects, invoking Lambda functions, and other actions that interact with specific data or resources.
upvoted 1 times
...
...
...
RicardoD
2 years, 6 months ago
A is the answer
upvoted 1 times
...
abhishek_m_86
2 years, 6 months ago
A. AWS CloudTrail data event logging : Seem correct
upvoted 2 times
...
jackdryan
2 years, 6 months ago
I'll go with A
upvoted 1 times
...
Golddust
2 years, 7 months ago
Why would B not fullfill this requirement? The degails API logs contain all the required information? Can someone please confirm?
upvoted 2 times
rewiga
2 years, 6 months ago
Management events provide visibility into management operations that are performed on resources in your AWS account. Data events provide visibility into the resource operations performed on or within a resource. These are also known as data plane operations. Data events are often high-volume activities. Example data events include: Amazon S3 object-level API activity (for example, GetObject, DeleteObject, and PutObject API operations)
upvoted 14 times
...
...
kung07
2 years, 7 months ago
References: https://aws.amazon.com/about-aws/whats-new/2016/11/aws-cloudtrail-supports-s3-data-events/ https://aws.amazon.com/premiumsupport/knowledge-center/cloudtrail-data-management-events/
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago