Which of the following services is used to send an alert from CloudWatch?
A. AWS SNS
B. AWS EBS
C. AWS SES
D. AWS SQS
Answer: A
Explanation:
AWS Auto Scaling and Simple Notification Service (SNS) work in conjunction with CloudWatch. You use Amazon SNS with CloudWatch to send messages when an alarm threshold has been reached.
Reference:
http://docs.aws.amazon.com/AmazonCloudWatch/latest/DeveloperGuide/related_services.html
QUESTION 7
To determine whether a log file was modified, deleted, or unchanged after CloudTrail delivered it, you can use ____.
A. trusted signers
B. optimistic locking
C. integrity validation
D. root credentialing
Answer: C
Explanation:
The AWS CloudTrail uses log file integrity validation to determine whether the log files were changed or modified since CloudTrail delivered them to an Amazon S3 bucket.
Reference: https://aws.amazon.com/cloudtrail/
QUESTION 8
An AWS CloudTrail log file provides the identity and source IP address of the API caller, and a time of the API call, request parameters, and ____.
A. response elements
B. event selectors
C. port alarms
D. destination buckets
Answer: A
Explanation:
An AWS CloudTrail log file provide the following details.
. Identity of the API caller
. Time of the API call
. Source IP address of the API caller
. Request parameters
. Response elements
Reference: https://aws.amazon.com/cloudtrail/
QUESTION 9
What does the term "statistics" mean with respect to CloudWatch metrics?
A. Time of a metric collection
B. Data aggregation over a specific period of time
C. Status of a metric
D. Unit of a metric
Answer: B
Explanation:
Statistics represents data aggregation of the metric data values over a specific period of time.
Reference:
http://docs.aws.amazon.com/AmazonCloudWatch/latest/DeveloperGuide/cloudwatch_concepts.ht
ml#Statistic
QUESTION 10
Which endpoint is considered to be best practise when analysing data within a Configuration Stream of AWS Config?
A. SNS
B. E-Mail
C. SQS
D. Kinesis
Answer: C
Explanation:
The Simple Queue Service can be subscribed to the AWS Config topic (the Configuration Stream) which gives you a highly available and decoupled environment for the data within your Configuration Streams. By using SQS it allows you to create and use your own applications to extract only information and data that is pertinent to you. There can be vast amounts of data coming into the Configuration Stream, but you might only want to be notified and made away of any changes that may relate to any potential security issues. As a result, you may want to pull information from the queue that only relate to to Security Groups/NACLs/IAM Roles or any other resource type that could affect the security of your environment.
Reference:
http://docs.aws.amazon.com/config/latest/developerguide/monitor-resource-changes.html
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.