Answer-first summary for fast verification
Answer: Change the existing CloudTrail trail so that it applies to all Regions.
The correct answer is D: Change the existing CloudTrail trail so that it applies to all Regions. This is the most efficient solution as it eliminates the need to create multiple trails or configure the S3 bucket differently. By updating the existing CloudTrail to apply to all Regions, you ensure that all logs from every Region will be captured and delivered to the specified S3 bucket, minimizing operational overhead.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
A startup initially operates with resources in a single AWS Region within a single AWS account. The security engineer sets up an AWS CloudTrail trail in that Region to send log files to an Amazon S3 bucket via the AWS CLI. As the company expands, it begins to utilize multiple AWS Regions. However, the security engineer observes that the S3 bucket is not receiving log files from these new Regions. What is the most efficient solution for the security engineer to ensure that log files from all Regions are consistently delivered to the S3 bucket?
A
Create a new CloudTrail trail. Select the new Regions where the company added resources.
B
Change the S3 bucket to receive notifications to track all actions from all Regions.
C
Create a new CloudTrail trail that applies to all Regions.
D
Change the existing CloudTrail trail so that it applies to all Regions.
No comments yet.