AWS Certified Solutions Architect – Associate (SAA-C03) — Question 103

A company stores its application logs in an Amazon CloudWatch Logs log group. A new policy requires the company to store all application logs in Amazon OpenSearch Service (Amazon Elasticsearch Service) in near-real time.
Which solution will meet this requirement with the LEAST operational overhead?

Answer options

• A. Configure a CloudWatch Logs subscription to stream the logs to Amazon OpenSearch Service (Amazon Elasticsearch Service).
• B. Create an AWS Lambda function. Use the log group to invoke the function to write the logs to Amazon OpenSearch Service (Amazon Elasticsearch Service).
• C. Create an Amazon Kinesis Data Firehose delivery stream. Configure the log group as the delivery streams sources. Configure Amazon OpenSearch Service (Amazon Elasticsearch Service) as the delivery stream's destination.
• D. Install and configure Amazon Kinesis Agent on each application server to deliver the logs to Amazon Kinesis Data Streams. Configure Kinesis Data Streams to deliver the logs to Amazon OpenSearch Service (Amazon Elasticsearch Service).

Correct answer: A

Explanation

The correct answer is A because configuring a CloudWatch Logs subscription to stream logs to Amazon OpenSearch Service provides a direct and efficient solution with minimal management. Options B and D introduce additional complexities with Lambda functions and Kinesis Agents, which require more maintenance. Option C, while functional, adds unnecessary components with Kinesis Data Firehose, increasing operational overhead.