A company wants to migrate la accounting system from an on-premises data center to the AWS Cloud in a single AWS Region Data security and an immutable audit log are the top priorities. The company must monitor all AWS activities for compliance auditing. The company has enabled AWS CloudTrail but wants to make sure it meets these requirements
Which actions should a solutions architect take to protect and secure CloudTrail? (Select
TWO.)
A . Enable CloudTrail log tile validation
B . Install the CloudTrail Processing Library
C . Enable logging of insights events in CloudTrail
D . Enable custom logging from the on-premises resources
E . Create an AWS Config rule to monitor whether CloudTrail is configured to use server-side encryption with AWS KMS managed encryption keys (SSE-KMS)
Answer: C,E
Leave a Reply