Management and Governance Services Flashcards
_________ provides event history of your AWS account activity, including actions taken through the AWS Management Console, AWS SDKs, command line tools, and other AWS services.
AWS CloudTrail
CloudTrail inserts an audit trail in an ____________or into ______
S3 bucket
CloudWatch logs
Provides metrics, logs, and alarms for infrastructure
Amazon CloudWatch
Continually evaluates infrastructure against a set of rules
AWS Config
Provides operational data and automation across infrastructure
AWS Systems Manager
__________ allows for custom dashboards based on collected metrics.
Amazon CloudWatch
____________ continuously monitors and records your AWS resource configurations and allows you to automate the evaluation of recorded configurations against desired configurations.
AWS Config
AWS Config provides specific ___________________ with rules for specific compliance standards.
conformance packs
_________________ provides multiple tools that make it easier to manage your AWS infrastructure.
AWS Systems Manager
_________ is a managed service for provisioning infrastructure based on templates. The templates can be written in ____________________ or _____________________.
AWS CloudFormation
YAML
JSON
________ is a feature that enables you to find changes in your infrastructure after it was launched by CloudFormation.
Drift Detection
AWS Control Tower - A service to create a ______________ environment on AWS that follows the recommended best practices in operational efficiency, security, and governance. It provides a way to create new AWS accounts based on ____________ .
multi-account
templates
An operations engineer at a financial services company. He recently discovered that someone had disabled a security setting on a server. He is concerned that events like this might go unnoticed until a breach. Which service would allow the organization to continually track configuration of infrastructure?
AWS Config
Lead architect at a SaaS company. They will be launching a new application that includes several components. He is looking to minimize manual work required when creating infrastructure. What service would enable James to automate much of this effort?
AWS CloudFormation
CTO at a manufacturing company. A cloud server needed to support their manufacturing process was deleted. They want to make sure the follow up with the person who deleted this instance. Which service could show the individual that deleted this specific server?
AWS CloudTrail