AWS Auditing, Monitoring and Logging Services Flashcards
1
Q
What is CloudWatch?
A
CloudWatch is a collection of services that help you monitor and observe your cloud resources.
- Collects metrics, logs, and events
- Detect anomalies in your environment
- Set Alarms
- Visualize logs
2
Q
What is CloudWatch real world usecase?
A
- CloudWatch Alarms can notify you if an EC2 instance goes into the stopped state or usage goes above a certain utilization.
- Create a CloudWatch event rule to notify you when root user API calls are detected in your account indicating root user activity.
3
Q
What is CloudTrail?
A
CloudTrail tracks user activity and API calls within your account.
- Log and retain account activity
- Track activity through the console, SDKs, and CLI
- Identify which user made changes
- Detect unusual activity in your account
4
Q
What is CloudTrail real world usecase?
A
You can troubleshoot events over the past 90 days using the CloudTrail event history log to find the specific time an event occurred on a per-Region basis. You can create a custom trail to extend past 90 days.