ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Solutions Architect - Associate SAA-C02 All Questions

View all questions & answers for the AWS Certified Solutions Architect - Associate SAA-C02 exam
Go to Exam

Exam AWS Certified Solutions Architect - Associate SAA-C02 topic 1 question 170 discussion

Exam question from Amazon's AWS Certified Solutions Architect - Associate SAA-C02
Question #: 170
Topic #: 1
[All AWS Certified Solutions Architect - Associate SAA-C02 Questions]

A company is reviewing its AWS Cloud deployment to ensure its data is not accessed by anyone without appropriate authorization. A solutions architect is tasked with identifying all open Amazon S3 buckets and recording any S3 bucket configuration changes.
What should the solutions architect do to accomplish this?

  • A. Enable AWS Config service with the appropriate rules
  • B. Enable AWS Trusted Advisor with the appropriate checks.
  • C. Write a script using an AWS SDK to generate a bucket report
  • D. Enable Amazon S3 server access logging and configure Amazon CloudWatch Events.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by josebormo at Aug. 10, 2020, 4:17 p.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
RicardoD
Highly Voted 3 years, 10 months ago
Answer is A AWS Config is a service that enables you to assess, audit, and evaluate the configurations of your AWS resources. Config continuously monitors and records your AWS resource configurations and allows you to automate the evaluation of recorded configurations against desired configurations.
upvoted 55 times
jkklim
3 years, 9 months ago
A is correct. Questions ask for RECORD changes which AWS CONFIG does.
upvoted 5 times
...
...
Paitan
Highly Voted 3 years, 10 months ago
I will also go with A. https://aws.amazon.com/config/
upvoted 24 times
...
cloud_collector
Most Recent 3 years ago
Selected Answer: A
Trusted Advisor draws upon best practices learned from serving hundreds of thousands of AWS customers. Trusted Advisor inspects your AWS environment, and then makes recommendations when opportunities exist to save money, improve system availability and performance, or help close security gaps. It seems no relationship with "identifying all open Amazon S3 buckets and documenting any modifications to their setup"
upvoted 2 times
...
naveenagurjara
3 years, 1 month ago
Selected Answer: A
AWS Config
upvoted 2 times
...
xav1er
3 years, 1 month ago
Selected Answer: A
Its AWS Config for sure
upvoted 1 times
...
Charun
3 years, 3 months ago
Selected Answer: A
I'll got with A: AWS Config enables you to assess and audit and receive a notification whenever a resource is created, modified, or deleted. https://aws.amazon.com/it/blogs/security/how-to-use-aws-config-to-monitor-for-and-respond-to-amazon-s3-buckets-allowing-public-access/
upvoted 3 times
...
Mandalorian24
3 years, 3 months ago
Selected Answer: A
Having 4 minimum instances meets the SLA and keeps costs down. If an AZ goes down, more instances can be quickly spun up, this should not violate the SLA. No need to waste money on extra instances.
upvoted 2 times
...
RapidStar
3 years, 4 months ago
Selected Answer: A
A is my take
upvoted 2 times
...
SmartDude
3 years, 5 months ago
Selected Answer: B
Aws Config is about configuration history & change; https://www.linkedin.com/pulse/aws-config-rules-vs-trusted-advisor-shekhar-londhe/
upvoted 2 times
...
Jusfunda
3 years, 6 months ago
Selected Answer: A
Answer is A https://aws.amazon.com/blogs/security/how-to-use-aws-config-to-monitor-for-and-respond-to-amazon-s3-buckets-allowing-public-access/
upvoted 3 times
...
FF11
3 years, 7 months ago
Selected Answer: B
Correct Answer is B, Trusted advisor inspects your AWS environment, and then makes recommendations when opportunities exist to save money, improve system availability and performance, or help close security gaps.
upvoted 2 times
...
woke
3 years, 8 months ago
A. Enable AWS Config service with the appropriate rules
upvoted 3 times
...
Jonycici
3 years, 9 months ago
D is my take
upvoted 2 times
...
DerekKey
3 years, 9 months ago
"identifying all open Amazon S3 buckets and recording any S3 bucket configuration changes." This is what AWS Config does.
upvoted 2 times
...
syu31svc
3 years, 9 months ago
I'll take A https://aws.amazon.com/config/: "AWS Config is a service that enables you to assess, audit, and evaluate the configurations of your AWS resources. Config continuously monitors and records your AWS resource configurations and allows you to automate the evaluation of recorded configurations against desired configurations. With Config, you can review changes in configurations and relationships between AWS resources, dive into detailed resource configuration histories, and determine your overall compliance against the configurations specified in your internal guidelines. This enables you to simplify compliance auditing, security analysis, change management, and operational troubleshooting."
upvoted 4 times
...
KK_uniq
3 years, 9 months ago
A for sure
upvoted 2 times
...
seasky
3 years, 9 months ago
ans = B
upvoted 1 times
...
Load full discussion...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel