Prev Question
Next Question

Which of the following are true regarding AWS CloudTrail? Choose 3 answers.

A.
CloudTrail is enabled globally.

B.
CloudTrail is enabled by default.

C.
CloudTrail is enabled on a per-region basis.

D.
CloudTrail is enabled on a per-service basis.

E.
Logs can be delivered to a single Amazon S3 bucket for aggregation.

F.
CloudTrail is enabled for all available services within a region.

G.
Logs can only be processed and delivered to the region in which they are generated.

Explanation:
A: have a trail with the Apply trail to all regions option enabled.
C: have multiple single region trails.
E: Log files from all the regions can be delivered to a single S3 bucket. Global service events are always
delivered to trails that have the Apply trail to all regions option enabled. Events are delivered from a single
region to the bucket for the trail. This setting cannot be changed. If you have a single region trail, you should
enable the Include global services option. If you have multiple single region trails, you should enable the Include
global services option in only one of the trails.
D: Incorrect. Once enabled it is applicable for all the supported services, service can’t be selected.

Prev Question
Next Question

Leave a Reply

Your email address will not be published. Required fields are marked *