SAP-C02 · Question #353
SAP-C02 Question #353: Real Exam Question with Answer & Explanation
Sign in or unlock SAP-C02 to reveal the answer and full explanation for question #353. The question stem and answer options stay visible for context.
Question
A company has a new security policy. The policy requires the company to log any event that retrieves data from Amazon S3 buckets. The company must save these audit logs in a dedicated S3 bucket. The company created the audit logs S3 bucket in an AWS account that is designated for centralized logging. The S3 bucket has a bucket policy that allows write-only cross-account access. A solutions architect must ensure that all S3 object-level access is being logged for current S3 buckets and future S3 buckets. Which solution will meet these requirements?
Options
- AEnable server access logging for all current S3 buckets. Use the audit logs S3 bucket as a
- BEnable replication between all current S3 buckets and the audit logs S3 bucket. Enable S3
- CConfigure S3 Event Notifications for all current S3 buckets to invoke an AWS Lambda function
- DEnable AWS CloudTrail, and use the audit logs S3 bucket to store logs. Enable data event
Unlock SAP-C02 to see the answer
You've previewed enough free SAP-C02 questions. Unlock SAP-C02 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.