ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Database - Specialty All Questions

View all questions & answers for the AWS Certified Database - Specialty exam
Go to Exam

Exam AWS Certified Database - Specialty topic 1 question 84 discussion

Exam question from Amazon's AWS Certified Database - Specialty
Question #: 84
Topic #: 1
[All AWS Certified Database - Specialty Questions]

A company is using Amazon RDS for PostgreSQL. The Security team wants all database connection requests to be logged and retained for 180 days. The RDS for PostgreSQL DB instance is currently using the default parameter group. A Database Specialist has identified that setting the log_connections parameter to 1 will enable connections logging.
Which combination of steps should the Database Specialist take to meet the logging and retention requirements? (Choose two.)

  • A. Update the log_connections parameter in the default parameter group
  • B. Create a custom parameter group, update the log_connections parameter, and associate the parameter with the DB instance
  • C. Enable publishing of database engine logs to Amazon CloudWatch Logs and set the event expiration to 180 days
  • D. Enable publishing of database engine logs to an Amazon S3 bucket and set the lifecycle policy to 180 days
  • E. Connect to the RDS PostgreSQL host and update the log_connections parameter in the postgresql.conf file
Show Suggested Answer Hide Answer
Suggested Answer: BC 🗳️
by pan24 at July 9, 2020, 9:25 a.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
BillyMadison
Highly Voted 3 years, 8 months ago
B&C https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_LogAccess.Concepts.PostgreSQL.html#USER_LogAccess.PostgreSQL.log_retention_period To set the retention period for system logs, use the rds.log_retention_period parameter. You can find rds.log_retention_period in the DB parameter group associated with your DB instance. The unit for this parameter is minutes. For example, a setting of 1,440 retains logs for one day. The default value is 4,320 (three days). The maximum value is 10,080 (seven days). Your instance must have enough allocated storage to contain the retained log files. To retain older logs, publish them to Amazon CloudWatch Logs. For more information, see Publishing PostgreSQL Logs to CloudWatch Logs. https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_LogAccess.Concepts.PostgreSQL.html#USER_LogAccess.PostgreSQL.PublishtoCloudWatchLogs
upvoted 12 times
...
Pranava_GCP
Most Recent 1 year, 8 months ago
Selected Answer: BC
BC are correct. A is wrong, can not change default param group E is wrong, can not update postgresql.conf file on RDS, maybe can do on EC2 ?
upvoted 1 times
...
ken_test1234
2 years, 2 months ago
Selected Answer: BC
you can not alter default parameter group , i read the documentation of rds and there is no integration to export logs to s3
upvoted 1 times
...
backbencher2022
2 years, 2 months ago
Selected Answer: BC
Clearly B&C as per this AWS URL - https://aws.amazon.com/premiumsupport/knowledge-center/track-failed-login-rds-postgresql/
upvoted 1 times
...
sk1974
2 years, 3 months ago
Why not B&D . There is no need to analyze the logs in Cloudwatch.They have to be retained in 180 days. Isn't storing data in S3 cheaper than storing them in Cloudwatch ?
upvoted 1 times
...
ninjalight25
2 years, 3 months ago
Selected Answer: AC
To meet the logging and retention requirements, the following steps should be taken: Update the log_connections parameter in the default parameter group to enable connection logging. Enable publishing of database engine logs to Amazon CloudWatch Logs and set the event expiration to 180 days. This will allow the logging of all database connection requests to be retained for 180 days.
upvoted 1 times
...
subzzzero
2 years, 7 months ago
why A,E? this is misleading there is no way you can edit postgresql.conf in RDS... correct is B&C
upvoted 1 times
...
novice_expert
3 years, 1 month ago
Selected Answer: BC
B. Create a custom parameter group, update the log_connections parameter, and associate the parameter with the DB instance C. Enable publishing of database engine logs to Amazon CloudWatch Logs and set the event expiration to 180 days
upvoted 2 times
...
soyyodario
3 years, 4 months ago
Selected Answer: BC
B and C. A wrong: Parameter groups Each Amazon RDS PostgreSQL instance is associated with a parameter group that contains the engine specific configurations. The engine configurations also include several parameters that control PostgreSQL logging behavior. AWS provides the parameter groups with default configuration settings to use for your instances. However, to change the default settings, you must create a clone of the default parameter group, modify it, and attach it to your instance. To set logging parameters for a DB instance, set the parameters in a DB parameter group and associate that parameter group with the DB instance. For more information, see Working with DB parameter groups.
upvoted 3 times
...
Dip11
3 years, 7 months ago
B and C for sure.
upvoted 1 times
...
Aesthet
3 years, 7 months ago
BC final answer
upvoted 2 times
...
myutran
3 years, 7 months ago
Ans: BC
upvoted 4 times
...
JobinAkaJoe
3 years, 7 months ago
B and C
upvoted 1 times
...
Ashoks
3 years, 7 months ago
Yes B&C
upvoted 2 times
...
Ebi
3 years, 8 months ago
BC correct answer
upvoted 1 times
...
Kitty0403
3 years, 8 months ago
Answer is B and C
upvoted 1 times
...
SaulGoodman
3 years, 8 months ago
agreed with B&C export logs to Cloudwatch Logs
upvoted 2 times
...
Load full discussion...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel