AWS Certified Database – Specialty — Question 357

A financial company is running an Amazon Redshift cluster for one of its data warehouse solutions. The company needs to generate connection logs, user logs, and user activity logs. The company also must make these logs available for future analysis.
Which combination of steps should a database specialist take to meet these requirements? (Choose two.)

Answer options

• A. Edit the database configuration of the cluster by enabling audit logging. Direct the logging to a specified log group in Amazon CloudWatch Logs.
• B. Edit the database configuration of the cluster by enabling audit logging. Direct the logging to a specified Amazon S3 bucket
• C. Modify the cluster by enabling continuous delivery of AWS CloudTrail logs to Amazon S3.
• D. Create a new parameter group with the enable_user_activity_logging parameter set to true. Configure the cluster to use the new parameter group.
• E. Modify the system table to enable logging for each user.

Correct answer: A, D

Explanation

To capture connection, user, and user activity logs in Amazon Redshift, database audit logging must be enabled and directed to a destination such as Amazon CloudWatch Logs for retention and analysis. Additionally, because user activity logging is not turned on by default even when database auditing is enabled, you must create a custom parameter group with the 'enable_user_activity_logging' parameter set to true and associate it with the cluster.