Practice Test 4 | AWS Certified Solutions Architect Associate | SAA-C03 | Dumps | Mock Test
A company has been using AWS cloud services for six months and just finished a security review.
Which finding below is considered a best practice in the security pillar of the well-architected framework?
A. Using the root user to create all new user accounts, at any time
B. Monitoring and using alerts using CloudTrail and CloudWatch
C. Assigning Private IP address ranges to VPCs that do not overlap
D. Designing the system using elasticity to meet changes in demand
Explanation:
Answer:B
Correct:
- B. Monitoring and alerting for key metrics and events is a best practice of the Security pillar
Incorrect:
- A. For the root user, you should follow the best practice of only using this login to create another, initial set of IAM users and groups for longer-term identity management operations
- C. Non-overlapping Private IP addresses is in the Reliability pillar
- D. Design using elasticity to meet demand is in the Performance Efficiency pillar (Design for Cloud Operations)
Reference:
Comments are closed, but trackbacks and pingbacks are open.