Prev Question
Next Question

Which of the following are true regarding AWS CloudTrail? Choose 3 answers

A.
CloudTrail is enabled globally

B.
CloudTrail is enabled by default

C.
CloudTrail is enabled on a per-region basis

D.
CloudTrail is enabled on a per-service basis.

E.
Logs can be delivered to a single Amazon S3 bucket for aggregation.

F.
CloudTrail is enabled for all available services within a region.

G.
Logs can only be processed and delivered to the region in which they are generated.

Explanation:
A:have a trail with the Apply trail to all regions option enabled.
C:have multiple single region trails.
E: Log files from all the regions can be delivered to a single S3 bucket
Global service events are always delivered to trails that have the Apply trail to all regions
option enabled. Events are delivered from a single region to the bucket for the trail. This
setting cannot be changed.
If you have a single region trail, you should enable the Include global services option.
If you have multiple single region trails, you should enable the Include global services option
in only one of the trails.
D Incorrect: once enabled it is applicable for all the supported services, service can’t be
selected

Prev Question
Next Question

Leave a Reply

Your email address will not be published. Required fields are marked *