AWS Certified Solutions Architect – Professional (SAP-C02) — Question 516

A travel company built a web application that uses Amazon Simple Email Service (Amazon SES) to send email notifications to users. The company needs to enable logging to help troubleshoot email delivery issues. The company also needs the ability to do searches that are based on recipient, subject, and time sent.

Which combination of steps should a solutions architect take to meet these requirements? (Choose two.)

Answer options

• A. Create an Amazon SES configuration set with Amazon Data Firehose as the destination. Choose to send logs to an Amazon S3 bucket.
• B. Enable AWS CloudTrail logging. Specify an Amazon S3 bucket as the destination for the logs.
• C. Use Amazon Athena to query the logs in the Amazon S3 bucket for recipient, subject, and time sent.
• D. Create an Amazon CloudWatch log group. Configure Amazon SES to send logs to the log group.
• E. Use Amazon Athena to query the logs in Amazon CloudWatch for recipient, subject, and time sent.

Correct answer: A, C

Explanation

To capture detailed email sending events from Amazon SES, you must set up a configuration set that routes event data through Amazon Data Firehose to an Amazon S3 bucket. Once the logs are stored in Amazon S3, Amazon Athena can be used to run standard SQL queries to search the JSON log data for specific fields like recipient, subject, and sent time. AWS CloudTrail does not capture fine-grained message delivery details, and Amazon Athena cannot directly query CloudWatch logs without complex workarounds.