A financial firm is using the Amazon S3 bucket to save all critical documents. During the annual Audit, there was a Non-compliant point raised by Audit Team for not maintaining access logs to these buckets. As a SysOps administrator, you plan to enable Amazon S3 Server Access Logs for all these buckets. Which of the following is the recommended option for storing Amazon S3 Server Access Logs?

Answer options:

A.Source & Target bucket should be separate bucket & should be created in the same AWS region.
B.Source & Target bucket should be separate bucket & should be created in differentAWS regions.
C.Source & Target bucket should be same bucket & should be created in different AWS regions.
D.Source & Target bucket should be same bucket & should be created in the same AWS region.

Correct Answer: A
For Storing Amazon S3 Server Access Logs, it is recommended to have the Source S3 bucket & target S3 bucket to be separate for easy management of logs. Both these buckets should be owned by a single account & should be in the same AWS region.
Option B is incorrect as for storing Amazon S3 server access logs, both Source S3 bucket & Target S3 bucket should be in the same region.
Option C is incorrect as for storing Amazon S3 server access logs, both Source S3 bucket & Target S3 bucket should be in the same region.
Option D is incorrect. Although this setting will work, it is recommended for easy management of Server access logs to have a target bucket different from that source S3 bucket in the same AWS region.
 For more information on Amazon S3 Server Access Logging, refer to the following URL-
https://docs.aws.amazon.com/AmazonS3/latest/dev/ServerLogs.html