AWS Certified Solutions Architect – Associate (SAA-C02) — Question 791

A company is designing an application that will run on an AWS Lambda function within a VPC. An Amazon API Gateway API will invoke the Lambda function. A solutions architect needs to recommend an Amazon CloudWatch solution that developers can use to identify the users who are generating the most network traffic.
Which solution will meet these requirements?

Answer options

• A. Configure CloudWatch Lambda Insights. Examine the network usage graph by using the multi-function view in the performance dashboard.
• B. Create a canary in CloudWatch Synthetics. Turn on active tracing. Review the network usage graph in the Monitoring tab of the canary.
• C. Configure VPC flow logs to stream to CloudWatch Logs. Create a CloudWatch Contributor Insights rule from the sample blueprint.
• D. Add the application to CloudWatch Application Insights. View the graph for top network users in the dashboard that Application Insights creates automatically.

Correct answer: A

Explanation

CloudWatch Lambda Insights delivers deep diagnostic performance data for AWS Lambda functions, allowing developers to monitor network metrics via the multi-function view in the performance dashboard. Other services like CloudWatch Synthetics are designed for synthetic monitoring of endpoints, whereas CloudWatch Application Insights focuses on application-health monitoring rather than granular Lambda network metrics. This makes Lambda Insights the most direct solution for examining function-level network usage profiles.