Summary and Quiz

Get a refresher of what you’ve learned in the Monitoring and Auditing services provided by AWS and take a short quiz to validate your knowledge.

We'll cover the following

Summary
Comparing CloudWatch, CloudTrail, and Config
Test your knowledge

In this lesson, we’ll summarize what we’ve learned in this chapter and test our knowledge of the AWS services we learned about with a short quiz.

Summary

Here’s a summary of the most important key takeaways from this chapter:

CloudWatch: CloudWatch provides observability by tracking metrics and insights from AWS resources. Here are the most important features of CloudWatch:
- Metrics: Quantifiable measures for tracking resource or service status.
- CloudWatch Logs: Real-time log data for performance and operational issue analysis.
- Alarms: Monitor various metrics and respond to changes.
- Events: Trigger actions in response to operational changes.
AWS CloudTrail: AWS CloudTrail is essential for tracking user and service activities within AWS, helping in auditing, validating compliance, identifying security breaches, and troubleshooting operational issues. It offers the following important features:
- CloudTrail event: A CloudTrail event is any action taken within our account. CloudTrail records these actions as events within the logs.
- CloudTrail services: CloudTrail is an expansive service that we can break into the following sub-services:
- Event History: CloudTrail Event History is for viewing recent activity history in our AWS account.
AWS Config: AWS Config is instrumental in auditing and ensuring compliance with AWS resources, monitoring configuration changes, and facilitating remediation actions. Here are the most important features of Config:
- Configuration recorder: Continuously records AWS resource configurations.
- Configuration items: Records of an AWS resource’s configuration at a specific moment, including metadata.
- Configuration history: A chronological record of a resource’s configuration items.
- Config rules: Defines compliance conditions for resources.
- Remediation actions: Automated or manual actions triggered by configuration changes violating Config rules. Remediation can use AWS Systems Manager or invoke AWS Lambda functions.

Comparing CloudWatch, CloudTrail, and Config

The following diagram illustrates a comparison chart for the CloudWatch, CloudTrail, and Config services:

Get hands-on with 1400+ tech skills courses.

Introduction

AWS Fundamentals

Identity and Access Management

Securing AWS Resources: Managing Access with IAM

Networking

Understanding Networking Services in AWS—From Zero to Hero

Getting Started with Virtual Private Cloud (VPC) in AWS

Managing Peer Connections between Amazon Virtual Private Clouds

Simple Storage Service S3

Configuring a Static Website with S3 and CloudFront

Compute Services

Getting Started with AWS Batch

Getting Started with Amazon ECS

Amazon EC2: Elastic Compute Cloud

Understanding AWS Compute Services — From Zero to Hero

Serverless Computing

Getting to Know AWS Lambda

Mastering Serverless on AWS—From Zero to Hero

Getting Started with Serverless Event-Driven Architectures on AWS

Storage

Understanding AWS Storage Options—From Zero to Hero

Working with AWS S3 Cross-Region Replication

Databases

Working with NoSQL Databases: A Beginner's Guide to AWS DynamoDB

Working with Relational Databases: A Beginner's Guide to AWS RDS

Getting Started with Amazon Aurora Database Engine

Application Integration

Mastering Application Integration Services—From Zero to Hero

Fundamentals of AWS Step Functions

Security and Compliance

Protecting Web Applications Using AWS WAF

Getting Started with AWS Key Management Service (KMS)

Finding Vulnerabilities on EC2 Instances Using AWS Inspector

Analytics

Analyzing S3 Data and CloudTrail Logs Using Amazon Athena

Getting Started with Amazon EMR

Building a Logs Processing Pipeline with Amazon Kinesis

Developer Tools

Mastering AWS Deployment Services—From Zero to Hero

Machine Learning

Understanding Machine Learning Services on AWS—From Zero to Hero

Deploying a Machine Learning Model with Amazon SageMaker

AWS Billing and Cost Management

Customer Engagement

Migration and Transfer

Monitoring and Auditing

Getting to Know Amazon CloudWatch

Getting Started with AWS Config

Management and Governance

Getting Started with AWS Systems Manager Parameter Store

Other AWS Services

Understanding AWS IoT Core with Lambda

Wrap Up

Practice Exam - AWS Certified Cloud Practitioner

Practice Exam Solution - AWS Certified Cloud Practitioner

Summary and Quiz

Summary

Comparing CloudWatch, CloudTrail, and Config