ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Security - Specialty All Questions

View all questions & answers for the AWS Certified Security - Specialty exam
Go to Exam

Exam AWS Certified Security - Specialty topic 1 question 311 discussion

Exam question from Amazon's AWS Certified Security - Specialty
Question #: 311
Topic #: 1
[All AWS Certified Security - Specialty Questions]

A company recently set up Amazon GuardDuty and is receiving a high number of findings from IP addresses within the company. A security engineer has verified that these IP addresses are trusted and allowed.
Which combination of steps should the security engineer take to configure GuardDuty so that it does not produce findings for these IP addresses? (Choose two.)

  • A. Create a plaintext configuration file that contains the trusted IP addresses.
  • B. Create a JSON configuration file that contains the trusted IP addresses.
  • C. Upload the configuration file directly to GuardDuty.
  • D. Upload the configuration file to Amazon S3. Add a new trusted IP list to GuardDuty that points to the file.
  • E. Manually copy and paste the configuration file data into the trusted IP list in GuardDuty.
Show Suggested Answer Hide Answer
Suggested Answer: AD 🗳️
by LittlyAnky at Dec. 30, 2021, 7:04 p.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Raphaello
1 year, 4 months ago
Selected Answer: AD
AD. Thank you!
upvoted 1 times
...
c73bf38
2 years, 3 months ago
Selected Answer: AD
The correct steps for configuring GuardDuty to exclude trusted IP addresses are: A. Create a plaintext configuration file that contains the trusted IP addresses. D. Upload the configuration file to Amazon S3. Add a new trusted IP list to GuardDuty that points to the file. GuardDuty allows you to exclude trusted IP addresses by creating a custom Trusted IP list. To create a list, you must first create a configuration file that contains the trusted IP addresses. The file can be either plaintext or JSON format. Then, upload the configuration file to an Amazon S3 bucket and create a Trusted IP list in GuardDuty that points to the file. This will ensure that GuardDuty does not generate findings for traffic originating from these trusted IP addresses.
upvoted 1 times
...
awsec2
2 years, 6 months ago
B. D. The security engineer should create a JSON configuration file that contains the trusted IP addresses and upload it to Amazon S3. Then, the security engineer should add a new trusted IP list to GuardDuty that points to the file in S3. This will allow GuardDuty to reference the trusted IP addresses from the configuration file and not produce findings for these IP addresses.
upvoted 2 times
Kezuko
2 years, 2 months ago
You can't use JSON configuration file. https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_upload-lists.html#prepare_list https://repost.aws/knowledge-center/guardduty-trusted-ip-list
upvoted 1 times
...
...
D2
2 years, 7 months ago
Selected Answer: AD
Answer AD https://aws.amazon.com/premiumsupport/knowledge-center/guardduty-trusted-ip-list/
upvoted 4 times
...
dcasabona
2 years, 11 months ago
Selected Answer: AD
Just confirmed, options A and D are correct.
upvoted 1 times
...
sapien45
2 years, 11 months ago
Selected Answer: AD
Json is not a supported format
upvoted 1 times
...
lotfi50
3 years, 4 months ago
Selected Answer: AD
A & D ok
upvoted 2 times
...
lotfi50
3 years, 4 months ago
Selected Answer: A
A & D ok
upvoted 2 times
...
AliS2020
3 years, 4 months ago
Yes A and D https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_upload-lists.html You can specify the location URL in the following formats: https://s3.amazonaws.com/bucket.name/file.txt https://s3-aws-region.amazonaws.com/bucket.name/file.txt http://bucket.s3.amazonaws.com/file.txt http://bucket.s3-aws-region.amazonaws.com/file.txt s3://bucket.name/file.txt
upvoted 3 times
...
Radhaghosh
3 years, 5 months ago
A. Create a plaintext configuration file that contains the trusted IP addresses. D. Upload the configuration file to Amazon S3. Add a new trusted IP list to GuardDuty that points to the file.
upvoted 2 times
...
DaKam
3 years, 6 months ago
A & D Refer to https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_upload-lists.html Create a plaintext file, place it into a bucket and refer it in the guardduty trusted-ip config
upvoted 4 times
...
roger8978
3 years, 6 months ago
A & D. While updating the IP list, it asks for a location i.e., S3 path and the file format. the valid values are plaintext, CSV.
upvoted 1 times
...
khamrumunnu
3 years, 6 months ago
Answer is A and D. We need to create a plaintext file with the IP addresses and upload it to S3. Then, pass the s3 url in the GuardDuty Trusted IP List
upvoted 2 times
...
LittlyAnky
3 years, 6 months ago
B & D...............
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel