Answer-first summary for fast verification
Answer: Use AWS CloudTrail for EKS API calls and Amazon CloudWatch Logs for container logs.
AWS CloudTrail is used for logging API calls and actions taken by users and roles in the account, which is relevant for EKS management operations. Amazon CloudWatch Logs can be configured to collect logs from the containers running in the EKS cluster, ensuring that all sensitive operations are logged and can be audited.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
You are tasked with implementing a logging solution for an application that uses Amazon EKS for container orchestration. The application involves sensitive operations that need to be logged and audited. Describe how you would configure logging for the EKS cluster and the applications running within it, including the AWS services you would use and how you would ensure the logs are secure and accessible for audit purposes.
A
Use AWS CloudTrail for EKS API calls and Amazon CloudWatch Logs for container logs.
B
Use Amazon CloudWatch Logs for EKS cluster logs and AWS X-Ray for application traces.
C
Use Amazon Elasticsearch Service for EKS logs and Amazon S3 for log storage.
D
Use AWS Config for EKS configuration logs and Amazon CloudWatch Logs for operational logs.
No comments yet.