Q34 — AWS SOA-C02 Ch.1
Question 34 of 100 | ← Chapter 1
A SysOps administrator has noticed millions of LIST requests on an Amazon S3 bucket. Which services or features can the administrator use to investigate where the requests are coming from? (Choose two.)
- A. AWS CloudTrail data events ✓
- B. Amazon EventBridge
- C. AWS Health Dashboard
- D. Amazon S3 server access logging ✓
- E. AWS Trusted Advisor
Correct Answer: A. AWS CloudTrail data events, D. Amazon S3 server access logging
Explanation
AWS CloudTrail数据事件记录对S3桶的API操作,包括LIST请求的详细信息,如来源IP、IAM实体。Amazon S3服务器访问日志捕获每个请求的详细数据,如操作类型、请求者、时间戳。两者结合可分析请求来源。《AWS文档》指出,数据事件需手动启用;S3访问日志需在桶属性中配置。CloudTrail数据事件侧重API级别追踪,S3日志侧重底层请求记录。其他选项如EventBridge用于事件路由,Health Dashboard显示服务状态,Trusted Advisor提供优化建议,均不直接关联请求源追踪。