ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Database - Specialty All Questions

View all questions & answers for the AWS Certified Database - Specialty exam
Go to Exam

Exam AWS Certified Database - Specialty topic 1 question 201 discussion

Exam question from Amazon's AWS Certified Database - Specialty
Question #: 201
Topic #: 1
[All AWS Certified Database - Specialty Questions]

An ecommerce company uses Amazon DynamoDB as the backend for its payments system. A new regulation requires the company to log all data access requests for financial audits. For this purpose, the company plans to use AWS logging and save logs to Amazon S3
How can a database specialist activate logging on the database?

  • A. Use AWS CloudTrail to monitor DynamoDB control-plane operations. Create a DynamoDB stream to monitor data-plane operations. Pass the stream to Amazon Kinesis Data Streams. Use that stream as a source for Amazon Kinesis Data Firehose to store the data in an Amazon S3 bucket.
  • B. Use AWS CloudTrail to monitor DynamoDB data-plane operations. Create a DynamoDB stream to monitor control-plane operations. Pass the stream to Amazon Kinesis Data Streams. Use that stream as a source for Amazon Kinesis Data Firehose to store the data in an Amazon S3 bucket.
  • C. Create two trails in AWS CloudTrail. Use Trail1 to monitor DynamoDB control-plane operations. Use Trail2 to monitor DynamoDB data-plane operations.
  • D. Use AWS CloudTrail to monitor DynamoDB data-plane and control-plane operations.
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by mbar94 at Sept. 3, 2022, 8:05 p.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
mbar94
Highly Voted 2 years, 9 months ago
Selected Answer: D
It's D - https://aws.amazon.com/about-aws/whats-new/2021/04/you-now-can-use-aws-cloudtrail-to-log-amazon-dynamodb-streams-da/. No need of separator trails as in C.
upvoted 10 times
...
Germaneli
Most Recent 1 year, 8 months ago
Selected Answer: D
If you create a trail, you can enable continuous delivery of CloudTrail events to an Amazon S3 bucket, including events for DynamoDB. That can include events from the data and the control plane. https://docs.aws.amazon.com/amazondynamodb/latest/developerguide/logging-using-cloudtrail.html
upvoted 1 times
...
Sathish_dbs
2 years, 5 months ago
what's the difference between C and D? if you have a trail setup then still you can see the logs but only recent history but that is not the requirements. so setup a trail to push the data to CloudWatch. As per parle101 link
upvoted 1 times
...
parle101
2 years, 5 months ago
Ans should be D as per this https://docs.aws.amazon.com/amazondynamodb/latest/developerguide/logging-using-cloudtrail.html
upvoted 2 times
...
parle101
2 years, 5 months ago
The logs should be saved to S3. C and D do not meet that requirement
upvoted 1 times
Mintwater
2 years, 1 month ago
D CloudTrail -- default to collect logs in S3.
upvoted 1 times
...
VinhNQ20_VietCong
2 years, 2 months ago
If you think this you should be studying for this cert... Or even any Associate cert for that matter...
upvoted 1 times
...
...
RBSK
2 years, 7 months ago
Separating two trails (With option C) is also right answer???
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel