Logging Flashcards Preview

A Cloud Guru - AWS SysOps Administrator Associate (2019) > Logging > Flashcards

Flashcards in Logging Deck (11)
Loading flashcards...
1
Q

What are the 4 services in AWS that are based on logging:

A

CloudTrail
Config
CloudWatch
VPC Flow Logs

2
Q

What does CloudTrail log?

A

API calls

3
Q

What does Config log?

A

Configurations - The state of your environment

4
Q

What does CloudWatch log?

A

Performance metrics

5
Q

What do VPC Flow Logs log?

A

Network traffic across the VPC?

6
Q

What AWS whitepaper can you read for logging?

A

Security at Scale: Logging in AWS

https://d0.awsstatic.com/whitepapers/compliance/AWS_Security_at_Scale_Logging_in_AWS_Whitepaper.pdf

7
Q

True or False: You should always prevent unauthorized access to your logs?

A

True

8
Q

What three methods are used to control access?

A

IAM users, groups, roles, and policies
Amazon S3 bucket policies
Multifactor Authentication

9
Q

True or false: Your organization should be defined by roles to ensure only those who need access to resources are.

A

True

10
Q

What 2 ways can you be notified when logs are created, or fail?

A

CloudTrail notifications

AWS Config rules

11
Q

True or false, alerts should only be an alert, and not contain details?

A

True. For example, SNS that points to a log file, but does not divulge specifics about the log.