How should a solutions architect meet these requirements?

SAA-C02 0 Comments

A company has enabled AWS CloudTrail logs to deliver log files to an Amazon S3 bucket for each of Its developer accounts. The company has created a central AWS account for streamlining management and audit reviews An internal auditor needs to access the CloudTrail logs, yet access needs to be restricted for all developer account users. The solution must be secure and optimized

How should a solutions architect meet these requirements?
A . Configure an AWS Lambda function m each developer account to copy the log files to the central account. Create an IAM role in the central account for the auditor Attach an IAM policy providing read-only permissions to the bucket.
B . Configure CloudTrail from each developer account to deliver the tog files to an S3 bucket in the central account. Create an IAM user in the central account for the auditor. Attach an IAM policy providing full permissions to the bucket.
C . Configure CloudTrail from each developer account to deliver the log files to an S3 bucket in the central account Create an IAM role in the central account for the auditor
Attach an lA’.l policy providing read-only permissions to the bucket.
D . Configure an AWS Lambda function in the central account to copy the log files from the S3 bucket in each developer account Create an IAM user in the central account for the auditor Attach an IAM policy providing full permissions to the bucket.

Answer: C

Latest SAA-C02 Dumps Valid Version with 230 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Instant Download SAA-C02 PDF     SAA-C02 Questions Online Training
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments