-
Hi Nauman Jamil Qazi,
Thank you for reaching out.
You are correct in pointing out that the answer does not fully address identifying and addressing insecure web traffic configurations. The answer only focuses on preventing the disabling of CloudTrail via the Service Control Policy (SCP), but it misses the requirement to monitor and secure web traffic configurations.
To fully meet the requirements, the solution should also include monitoring insecure web traffic configurations, which can be done using AWS Config combined with CloudTrail. AWS Config can track and manage resource configurations, helping detect insecure settings like open ports or misconfigured security groups.
We’ve updated the question to reflect this correction and will be updating the portal shortly.
Thank you for your feedback, and we appreciate your understanding!
Best,
Irene @ Tutorials Dojo
