SCS-C02 · Question #136
SCS-C02 Question #136: Real Exam Question with Answer & Explanation
Sign in or unlock SCS-C02 to reveal the answer and full explanation for question #136. The question stem and answer options stay visible for context.
Question
A company is using AWS WAF to protect a customized public API service that is based on Amazon EC instances. The API uses an Application Load Balancer. The AWS WAF web ACL is configured with an AWS Managed Rules rule group. After a software upgrade to the API and the client application, some types of requests are no longer working and are causing application stability issues. A security engineer discovers that AWS WAF logging is not turned on for the web ACL. The security engineer needs to immediately return the application to service, resolve the issue, and ensure that logging is not turned off in the future. The security engineer turns on logging for the web ACL and specifies Amazon CloudWatch Logs as the destination. Which additional set of steps should the security engineer take to meet the requirements?
Options
- AEdit the rules in the web ACL to include rules with Count actions. Review the logs to determine
- BEdit the rules in the web ACL to include rules with Count actions. Review the logs to determine
- CEdit the rules in the web ACL to include rules with Count and Challenge actions. Review the logs
- DEdit the rules in the web ACL to include rules with Count and Challenge actions. Review the logs
Unlock SCS-C02 to see the answer
You've previewed enough free SCS-C02 questions. Unlock SCS-C02 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.