Question 18: You have two set of auto-scaling groups with 5 EC2 instances in each to starts with. You need to have logged all the events on EC2 instances and also wants to monitor log events. ..... have to store all the logs encrypted and access should be given to limited users. Which of the following will be helpful in implementing this solution?
- Create an S3 bucket and store all the logs in this bucket. Control the bucket access via IAM policy and bucket policy.
- Correct Answer
- Store all the logs in CloudTrail and group them together and apply the retention policy on it.
- Create a CloudWatch Log Groups and apply the retention policy on that Log group. And also using the IAM policy you can put the access control.
- To enabled the encryption of log data, we can use CloudHSM (Hardware Security Module)