
Ultimate access to all questions.
Deep dive into the quiz with AI chat providers.
We prepare a focused prompt with your quiz and certificate details so each AI can offer a more tailored, in-depth explanation.
A company needs to review its AWS Cloud deployment to ensure that its Amazon S3 buckets do not have unauthorized configuration changes.
What should a solutions architect do to accomplish this goal?
A
Turn on AWS Config with the appropriate rules.
B
Turn on AWS Trusted Advisor with the appropriate checks.
D
Turn on Amazon S3 server access logging. Configure Amazon EventBridge (Amazon CloudWatch Events).
Explanation:
AWS Config is the correct solution for monitoring configuration changes to AWS resources, including Amazon S3 buckets. Here's why:
Option B - AWS Trusted Advisor:
Option C - Amazon Inspector:
Option D - S3 Server Access Logging + EventBridge:
To properly monitor S3 bucket configurations:
s3-bucket-public-read-prohibited, s3-bucket-public-write-prohibited)This approach provides continuous monitoring, automated compliance checking, and alerting for unauthorized configuration changes to S3 buckets.