Which of the following are true regarding AWS CloudTrail?

Which of the following are true regarding AWS CloudTrail? (Choose three.)

Which of the following are true regarding AWS CloudTrail? (Choose three.)

A.
CloudTrail is enabled globally

B.
CloudTrail is enabled by default

C.
CloudTrail is enabled on a per-region basis

D.
CloudTrail is enabled on a per-service basis.

E.
Logs can be delivered to a single Amazon S3 bucket for aggregation.

F.
CloudTrail is enabled for all available services within a region.

G.
Logs can only be processed and delivered to the region in which they are generated.

Explanation:
A: have a trail with the Apply trail to all regions option enabled.
C: have multiple single region trails.
E: Log files from all the regions can be delivered to a single S3 bucket. Global service events are always
delivered to trails that have the Apply trail to all regions option enabled. Events are delivered from a single
region to the bucket for the trail. This setting cannot be changed. If you have a single region trail, you should
enable the Include global services option. If you have multiple single region trails, you should enable the Include
global services option in only one of the trails.
D: Incorrect. Once enabled it is applicable for all the supported services, service can’t be selected.



Leave a Reply 8

Your email address will not be published. Required fields are marked *


Venu

Venu

BCE . Cloud trail is enable by default for that account

charm

charm

A
B
C
E

CloudTrail is enabled globally (it can be enabled for all regions and also per region basis)

CloudTrail is enabled by default (was not enabled by default, however, it is enabled by default as per the latest AWS enhancements)

CloudTrail is enabled on a per-region basis (it can be enabled for all regions and also per region basis)

CloudTrail is enabled on a per-service basis (once enabled it is applicable for all the supported services, service can’t be selected)

Logs can be delivered to a single Amazon S3 bucket for aggregation

CloudTrail is enabled for all available services within a region. (is enabled only for CloudTrail supported services)

Logs can only be processed and delivered to the region in which they are generated. (can be logged to bucket in any region)