DEA-C01 · Question #203
DEA-C01 Question #203: Real Exam Question with Answer & Explanation
Sign in or unlock DEA-C01 to reveal the answer and full explanation for question #203. The question stem and answer options stay visible for context.
Question
A company stores its processed data in an S3 bucket. The company has a strict data access policy. The company uses IAM roles to grant teams within the company different levels of access to the S3 bucket. The company wants to receive notifications when a user violates the data access policy. Each notification must include the username of the user who violated the policy. Which solution will meet these requirements?
Options
- AUse AWS Config rules to detect violations of the data access policy. Set up compliance alarms.
- BUse Amazon CloudWatch metrics to gather object-level metrics. Set up CloudWatch alarms.
- CUse AWS CloudTrail to track object-level events for the S3 bucket. Forward events to Amazon
- DUse Amazon S3 server access logs to monitor access to the bucket. Forward the access logs to
Unlock DEA-C01 to see the answer
You've previewed enough free DEA-C01 questions. Unlock DEA-C01 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.