Answer-first summary for fast verification
Answer: Update the existing bucket policy in the Amazon S3 console with the new log file prefix, and then update the log file prefix in the CloudTrail console.
The correct answer is C. The issue arises because the existing bucket policy does not accommodate the new log file prefix. By updating the existing bucket policy in the Amazon S3 console to reflect the new log file prefix, you ensure that the necessary permissions are in place. After updating the bucket policy, you can then proceed to update the log file prefix in the CloudTrail console without encountering the error.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
A security engineer is tasked with modifying the log file prefix for an existing AWS CloudTrail trail. However, when attempting to save the changes in the CloudTrail console, an error message appears: 'There is a problem with the bucket policy.' What is the appropriate course of action for the security engineer to successfully update the log file prefix?
A
Create a new trail with the updated log file prefix, delete the original trail, update the existing bucket policy in the Amazon S3 console with the new log file prefix, and then update the log file prefix in the CloudTrail console.
B
Update the existing bucket policy in the Amazon S3 console to allow the security engineer's principal to perform PutBucketPolicy, and then update the log file prefix in the CloudTrail console.
C
Update the existing bucket policy in the Amazon S3 console with the new log file prefix, and then update the log file prefix in the CloudTrail console.
D
Update the existing bucket policy in the Amazon S3 console to allow the security engineer's principal to perform GetBucketPolicy, and then update the log file prefix in the CloudTrail console.
No comments yet.