Bird
0
0

Which AWS resource is required to enable CloudTrail logging?

easy📝 Conceptual Q2 of 15
AWS - Advanced Security
Which AWS resource is required to enable CloudTrail logging?
AAn EC2 instance to process logs
BAn S3 bucket to store logs
CA Lambda function to generate logs
DA VPC endpoint for log delivery
Step-by-Step Solution
Solution:

  1. Step 1: Identify CloudTrail log storage

    CloudTrail delivers logs to an S3 bucket you specify for storage and analysis.

  2. Step 2: Understand other options

    EC2, Lambda, and VPC endpoints are not required to store CloudTrail logs.

  3. Final Answer:

    An S3 bucket to store logs -> Option B

  4. Quick Check:

    CloudTrail logs stored in S3 bucket = A [OK]
Quick Trick: CloudTrail logs always go to S3 buckets [OK]
Common Mistakes:
  • Choosing EC2 or Lambda as log storage
  • Confusing VPC endpoints with log storage

Want More Practice?

15+ quiz questions · All difficulty levels · Free

Free Signup - Practice All Questions
More AWS Quizzes
Advanced Security - AWS Shield for DDoS protection - Quiz 2easy Architecture Best Practices - Reliability pillar principles - Quiz 1easy CloudFormation - Resources section - Quiz 8hard CloudFormation - Updating and deleting stacks - Quiz 11easy EKS - EKS cluster creation - Quiz 6medium EKS - Node groups (managed, self-managed, Fargate) - Quiz 15hard Route 53 - Failover routing for disaster recovery - Quiz 13medium Serverless Architecture - Step Functions for workflows - Quiz 5medium Serverless Architecture - Step Functions for workflows - Quiz 12easy Serverless Architecture - Lambda with API Gateway pattern - Quiz 10hard