Q5 — AWS DOP-C02 Ch.2

Question 5 of 100 | ← Chapter 2

A highly regulated company has established a policy stating that DevOps engineers must not log in to Amazon EC2 instances unless an emergency occurs. If DevOps engineers do log in, the security team must be notified within 15 minutes of the event.

Correct Answer: B. Install the Amazon CloudWatch agent on each EC2 instance. Configure the agent to push all logs to Amazon CloudWatch Logs and set up CloudWatch metric filters to search for user login events. If a login is found, send a notification to the security team using Amazon SNS.

Explanation

xmexam.taobao.com