AWS Certified Cloud Practitioner — Question 713

A company needs to identify who accessed an AWS service and what action was performed for a given time period.

Which AWS service should the company use to meet this requirement?

Answer options

Correct answer: B

Explanation

AWS CloudTrail is designed to record API calls and user activity across an AWS infrastructure, allowing organizations to track who made a request, from what IP address, and when. In contrast, Amazon CloudWatch focuses on performance monitoring and logging, AWS Security Hub aggregates security alerts, and Amazon Inspector performs automated vulnerability scans.