A company stores critical data in Amazon S3 buckets. A SysOps administrator must build a solution to record all S3 API activity. Which action will meet this requirement?
A.
Configure S3 bucket metrics to record object access logs.
B.
Create an AWS CloudTrail trail to log data events for all S3 objects.
C.
Enable S3 server access logging for each S3 bucket.
D.
Use AWS IAM Access Analyzer for Amazon S3 to store object access logs.
B!
Amazon S3 is integrated with AWS CloudTrail, a service that provides a record of actions taken by a user, role, or an AWS service in Amazon S3. CloudTrail captures a subset of API calls for Amazon S3 as events, including calls from the Amazon S3 console and code calls to the Amazon S3 APIs.
https://docs.aws.amazon.com/AmazonS3/latest/userguide/cloudtrail-logging.html
bad question, there should be a "both", looking at the table on https://docs.aws.amazon.com/AmazonS3/latest/userguide/logging-with-S3.html
one can argue what are more important but it's very fuzzy
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
princajen
Highly Voted 1 year, 8 months agochanaka5
1 year, 7 months agojipark
Most Recent 8 months, 3 weeks agos50600822
10 months, 2 weeks agoLiongeek
1 year, 5 months agoSurferbolt
1 year, 6 months ago