New Year Sale Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: xmasmnth

A security engineer configures VPC Flow Logs and the associated IAM role to log all...

  1. Home
  2. Amazon Web Services
  3. AWS Certified Specialty
  4. SCS-C02
  5. SCS-C02 Questions
  6. AWS Certified Security - Specialty Practice Questions

A security engineer configures VPC Flow Logs and the associated IAM role to log all VPC traffic to a log group in Amazon CloudWatch Logs. After a wait of 10 minutes, no logs are appearing in the log group. The security engineer confirms that traffic is being sent to the VPC.

After additional debugging, the security engineer isolates the problem to the role that is associated with the VPC flow logs.

What could be the reason that the logs are not appearing in CloudWatch Logs?

A.

The logs:GetLogEvents permission is not granted in the role.

B.

The security engineer does not have permission to assume the role.

C.

The principal vpc-flow-logs.amazonaws.com does not have permission to assume the role.

D.

The role does not have permission to tag a CloudWatch Logs stream.

Amazon Web Services SCS-C02 View All Questions

Amazon Web Services SCS-C02 Summary

  • Vendor: Amazon Web Services
  • Product: SCS-C02
  • Update on: Dec 19, 2025
  • Questions: 467
Price: $52.5  $149.99
Buy Now SCS-C02 PDF + Testing Engine Pack
Next
A company uses Amazon API Gateway to present REST APIs to users.
A company is hosting a web application on Amazon EC2 instances behind an Application Load...
Previous

Payments We Accept

Your purchase with ExamsVCE is safe and fast. Your products will be available for immediate download after your payment has been received.
The ExamsVCE website is protected by 256-bit SSL from McAfee, the leader in online security.

examsvce payment method

Contact Us

Copyright © 2013-2025 examsvce.com. All Rights Reserved
mcafee secure

TESTED 19 Dec 2025