ExamGecko
Question list
Search
Search

List of questions

Search

Related questions











Question 182 - SCS-C01 discussion

Report
Export

During a security event, it is discovered that some Amazon EC2 instances have not been sending Amazon CloudWatch logs. Which steps can the Security Engineer take to troubleshoot this issue? (Select two.)

A.
Connect to the EC2 instances that are not sending the appropriate logs and verify that the CloudWatch Logs agent is running.
Answers
A.
Connect to the EC2 instances that are not sending the appropriate logs and verify that the CloudWatch Logs agent is running.
B.
Log in to the AWS account and select CloudWatch Logs. Check for any monitored EC2 instances that are in the “Alerting” state and restart them using the EC2 console.
Answers
B.
Log in to the AWS account and select CloudWatch Logs. Check for any monitored EC2 instances that are in the “Alerting” state and restart them using the EC2 console.
C.
Verify that the EC2 instances have a route to the public AWS API endpoints.
Answers
C.
Verify that the EC2 instances have a route to the public AWS API endpoints.
D.
Connect to the EC2 instances that are not sending logs. Use the command prompt to verify that the right permissions have been set for the Amazon SNS topic.
Answers
D.
Connect to the EC2 instances that are not sending logs. Use the command prompt to verify that the right permissions have been set for the Amazon SNS topic.
E.
Verify that the network access control lists and security groups of the EC2 instances have the access to send logs over SNMP.
Answers
E.
Verify that the network access control lists and security groups of the EC2 instances have the access to send logs over SNMP.
Suggested answer: A, C

Explanation:

https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/cloudwatch-and-interface-VPC.html

asked 16/09/2024
Charles Smith
44 questions
User
Your answer:
0 comments
Sorted by

Leave a comment first