A company requires that all S3 buckets are private. If a developer accidentally makes a bucket public, it must be automatically reverted to private within minutes. Which combination of services achieves this?

Answer options:

AWS CloudTrail and Amazon SNS.

AWS Config rules triggering an AWS Systems Manager Automation document.

Amazon Macie and AWS Lambda.

AWS Trusted Advisor.

How to approach this question

Look for the detect-and-remediate pattern.

Full Answer

B.AWS Config rules triggering an AWS Systems Manager Automation document.✓ Correct

AWS Config continuously monitors resource configurations and can automatically trigger Systems Manager Automation documents to remediate non-compliant resources.

Common mistakes

Relying on CloudTrail without a compute service to perform the remediation.

Question 42 All questions Question 44

Practice the full AWS Solutions Architect Professional SAP-C02 Practice Exam 3

75 questions · hints · full answers · grading

More questions from this exam

Q01An enterprise has 100 VPCs across 5 AWS Regions. They need to establish a highly available, trans...Hard Q02A company uses AWS Organizations. The CISO requires that no EC2 instances can be launched outside...Medium Q03An application uses Amazon Aurora PostgreSQL. To meet disaster recovery requirements, the databas...Hard Q04A company is setting up a new multi-account AWS environment. They want to automate the creation o...Medium Q05An organization wants to allocate AWS costs to specific departments. They use multiple AWS accoun...Medium

View all 75 questions →