AWS Certified Data Engineer - Associate
Get started today
Ultimate access to all questions.
Ultimate access to all questions.
You are tasked with implementing a logging solution for an application that uses Amazon EKS for container orchestration. The application involves sensitive operations that need to be logged and audited. Describe how you would configure logging for the EKS cluster and the applications running within it, including the AWS services you would use and how you would ensure the logs are secure and accessible for audit purposes.
Explanation:
AWS CloudTrail is used for logging API calls and actions taken by users and roles in the account, which is relevant for EKS management operations. Amazon CloudWatch Logs can be configured to collect logs from the containers running in the EKS cluster, ensuring that all sensitive operations are logged and can be audited.