Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Amazon Exam SCS-C02 Topic 1 Question 37 Discussion

Actual exam question for Amazon's SCS-C02 exam
Question #: 37
Topic #: 1
[All SCS-C02 Questions]

A company is running an application on Amazon EC2 instances in an Auto Scaling group. The application stores logs locally. A security engineer noticed that logs were lost after a scale-in event. The security engineer needs to recommend a solution to ensure the durability and availability of log data All logs must be kept for a minimum of 1 year for auditing purposes. What should the security engineer recommend?

Show Suggested Answer Hide Answer
Suggested Answer: C

Option C is the best solution to ensure the durability and availability of log data from EC2 instances in an Auto Scaling group. By using an Amazon CloudWatch agent, the logs can be sent to Amazon CloudWatch Logs, which is a fully managed service that can store, monitor, and analyze log dat

a. CloudWatch Logs also allows you to set retention policies for your log groups, so you can keep the logs for a minimum of 1 year for auditing purposes.CloudWatch Logs also supports encryption, access control, and compliance features to protect your log data12


by Anglea at Nov 13, 2024, 01:52 PM

Limited Time Offer

25%

Off

Get Premium SCS-C02 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Rashad
4 months ago
I see the benefits of both options A and B, but I think option D is also important. Having a manual review of security logs before instance termination adds an extra layer of security.
upvoted 0 times
...
Santos
4 months ago
I disagree, I believe option B is more efficient. Using EFS for storing logs and copying them daily provides better durability and availability.
upvoted 0 times
...
Marti
4 months ago
Haha, I bet the security engineer is having a field day trying to figure out the best way to keep those logs safe. Option A sounds like a lot of manual work.
upvoted 0 times
...
Layla
4 months ago
Option D is interesting, but I'm not sure keeping instances alive for an hour just to review logs is the most efficient solution.
upvoted 0 times
Amalia
3 months ago
D: I see the point, but I think option A is more efficient. Creating and attaching EBS volumes during instance creation is a straightforward approach.
upvoted 0 times
...
Carin
3 months ago
C: Option B also seems like a good solution. Using EFS to store logs and copying them daily provides durability and availability.
upvoted 0 times
...
Aleta
4 months ago
B: I agree with option A. It's a simple and effective way to make sure logs are not lost during scale-in events.
upvoted 0 times
...
Tracie
4 months ago
A: I think option A is the best solution. Creating and attaching an EBS volume each time an instance is created ensures log durability.
upvoted 0 times
...
...
Pete
4 months ago
I think option A is the best solution. It ensures that logs are stored on a separate EBS volume that can be easily reattached to another instance.
upvoted 0 times
...
Staci
4 months ago
I like the idea of using CloudWatch Logs in option C. It's a managed service, so we don't have to worry about the maintenance.
upvoted 0 times
Hannah
3 months ago
A) Within the Auto Scaling lifecycle, add a hook to create and attach an Amazon Elastic Block Store (Amazon EBS) log volume each time an EC2 instance is created. When the instance is terminated, the EBS volume can be reattached to another instance for log review.
upvoted 0 times
...
Barrett
4 months ago
I agree, using CloudWatch Logs would be a reliable solution for storing and reviewing logs.
upvoted 0 times
...
Elinore
4 months ago
C) Add an Amazon CloudWatch agent into the AMI used in the Auto Scaling group. Configure the CloudWatch agent to send the logs to Amazon CloudWatch Logs for review.
upvoted 0 times
...
...
Carmela
5 months ago
Option B seems like the way to go. Storing the logs in EFS ensures they are durable and available even after scale-in events.
upvoted 0 times
Aretha
3 months ago
I think using EFS with a daily copy process provides more control over the log data and ensures it is retained for auditing purposes.
upvoted 0 times
...
Cheryll
4 months ago
But what about using CloudWatch Logs? Wouldn't that be a simpler solution for log management?
upvoted 0 times
...
Maxima
4 months ago
I agree, using EFS for storing logs is a good solution for ensuring durability and availability.
upvoted 0 times
...
Lonna
4 months ago
Option B seems like the way to go. Storing the logs in EFS ensures they are durable and available even after scale-in events.
upvoted 0 times
...
...

Save Cancel