Crucial Exams

AWS Certified CloudOps Engineer Associate SOA-C03 Practice Question

A single AWS account has a trail that records write-only management events and delivers logs to an S3 bucket. During an investigation, the security team must review AWS Management Console sign-in attempts, but no such entries appear in the recent log files. The team must collect this information without enabling any data events. What should a CloudOps engineer do to meet the requirement?

  • Modify the trail to log read-only management events in addition to write-only events.

  • Convert the trail to an organization trail and query the Organization Activity tab.

  • Create a new trail that captures data events for IAM and AWS STS only.

  • Enable CloudTrail Insights on the existing trail to automatically record console login anomalies.

AWS Certified CloudOps Engineer Associate SOA-C03
Security and Compliance
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot