Which AWS Service Monitors Account Activity?

Answer - A.

The AWS documentation mentions the following.

AWS CloudTrail is a service that enables governance, compliance, operational auditing, and risk auditing of your AWS account.

With CloudTrail, you can log, continuously monitor, and retain account activity related to actions across your AWS infrastructure.

CloudTrail provides event history of your AWS account activity, including actions taken through the AWS Management Console, AWS SDKs, command line tools, and other AWS services.

This event history simplifies security analysis, resource change tracking, and troubleshooting.

For more information on Cloudtrail, please refer to the below URL:

https://aws.amazon.com/cloudtrail/

The correct answer is A. AWS CloudTrail.

AWS CloudTrail is a service that enables governance, compliance, operational auditing, and risk auditing of your AWS account. It allows you to log, continuously monitor, and retain events related to API calls across your AWS infrastructure.

By using AWS CloudTrail, you can monitor the activity of your AWS account and maintain a record of all the activity occurring within your account. You can use this information to investigate security incidents, troubleshoot operational issues, and gain insights into user behavior.

AWS CloudWatch is a monitoring service for AWS resources and applications. It helps you to collect and track metrics, collect and monitor log files, and set alarms. However, it is not designed for auditing and logging purposes.

AWS CloudWatch Logs is a feature of AWS CloudWatch that enables you to monitor, store, and access log files from various AWS resources. However, it is also not specifically designed for auditing purposes.

Account Reports is not an AWS service, but rather a general term that may refer to various reports that you can generate within your AWS account. These reports may include details on usage and costs, but they do not provide the level of monitoring and auditing capabilities that AWS CloudTrail does.