A DevOps team supports many accounts across an organization in flaws Organizations. The DevOps team has decided to use flaws Coring across the organization to implement centralized automatic remediation of Amazon S3 buckets that have public ACLs. Individual accounts must not be able to modify the remediation strategy. Which solution will meet these requirements?

Questions › Category: DOP-C01 › A DevOps team supports many accounts across an organization in flaws Organizations. The DevOps team has decided to use flaws Coring across the organization to implement centralized automatic remediation of Amazon S3 buckets that have public ACLs. Individual accounts must not be able to modify the remediation strategy. Which solution will meet these requirements?

0 Vote Up Vote Down

Admin Staff asked 7 months ago

A DevOps team supports many accounts across an organization in flaws Organizations. The DevOps team has decided to use flaws Coring across the organization to implement centralized automatic remediation of Amazon S3 buckets that have public ACLs. Individual accounts must not be able to modify the remediation strategy.
Which solution will meet these requirements?

A. Create an flaws Config conformance pack that contains a rule that checks for S3 buckets that have public ACLs. Configure the conformance pack to use an flaws Systems Manager Automation runbook to block public access to the S3 buckets. Deploy the conformance pack across the organization.

B. Configure flaws Config rules that detect S3 buckets that have public ACLs. Configure a remediation action that uses flaws Lambda to block public access to the S3 buckets. Use flaws CloudFormation StackSets to deploy the rules across the organization.

C. Configure flaws Config rules that detect S3 buckets that have public ACLs. Configure a remediation action that uses an flaws Systems Manager Automation runbook to block public access to the S3 buckets. Use flaws CloudFormation StackSets to deploy the rules across the organization.

D. Create an flaws Config conformance pack that contains a rule that checks for 53 buckets that have public ACLs. Configure the conformance pack to use an flaws Lambda function to block public access to the S3 buckets. Deploy the conformance pack across the organization.








 

Correct Answer: D

This question is in DOP-C01 exam
For getting AWS DevOps Engineer - Professional Certificate

A company requires its internal business teams to launch resources through pre-approved flaws CloudFormation templates only. The security team requires automated monitoring when resources drift from their expected state. Which strategy should be used to meet these requirements?

AZ-104 Practice Test Free

Recommended

AZ-104 Practice Test Free

Cisco IOS Popular Commands

Linux Professional Institute LPIC-2 Certificate

Linux Professional Institute LPIC-1 Certificate

Cisco Certified DevNet Associate Certificate

AWS Certified Cloud Practitioner Certificate

Welcome Back!

Create New Account!

Retrieve your password

A company requires its internal business teams to launch resources through pre-approved flaws CloudFormation templates only. The security team requires automated monitoring when resources drift from their expected state. Which strategy should be used to meet these requirements?

AZ-104 Practice Test Free

Related Questions

Recommended

AZ-104 Practice Test Free

Cisco IOS Popular Commands

Linux Professional Institute LPIC-2 Certificate

Linux Professional Institute LPIC-1 Certificate

Cisco Certified DevNet Associate Certificate

AWS Certified Cloud Practitioner Certificate

Welcome Back!

Create New Account!

Retrieve your password