AWS Solutions Architect Associate Practice Test

Disable ads (and more) with a membership for a one time $2.99 payment

Study for the AWS Solutions Architect Associate Test. Our comprehensive quiz offers multiple-choice questions that replicate the exam environment. Benefit from detailed explanations and hints. Prepare confidently for your AWS certification exam!

Each practice test/flash card set has 50 randomly selected questions from a bank of over 500. You'll get a new set of questions each time!

Practice this question and more.


Which service is used for auditing user access and API calls across the entire AWS estate?

  1. CloudFront

  2. CloudWatch

  3. CloudFlare

  4. CloudTrail

The correct answer is: CloudTrail

The chosen answer is CloudTrail, which is specifically designed for auditing user access and API calls across an AWS environment. CloudTrail captures all API requests made in an AWS account, providing a comprehensive log of actions taken and the identity of the requester. This feature is crucial for compliance and security because it enables organizations to track usage patterns, detect unauthorized actions, and analyze potential security risks. The logs generated by CloudTrail can be integrated with other AWS services for more in-depth analysis or alerting. CloudFront, while important for content delivery, does not provide audit capabilities related to user access or API calls. CloudWatch focuses on monitoring operational performance and resource utilization but does not log detailed user activity or changes to resources in the way CloudTrail does. CloudFlare is a third-party service primarily used for web performance and security but is not relevant to AWS API auditing. Thus, CloudTrail stands out as the dedicated service for auditing user activity across AWS.