AWS Certified Solutions Architect – Professional — Question 793

A travel company built a web application that uses Amazon Simple Email Service (Amazon SES) to send email notifications to users. The company needs to enable logging to help troubleshoot email delivery issues. The company also needs the ability to do searches that are based on recipient, subject, and time sent.
Which combination of steps should a solutions architect take to meet these requirements? (Choose two.)

Answer options

• A. Create an Amazon SES configuration set with Amazon Kinesis Data Firehose as the destination. Choose to send logs to an Amazon S3 bucket.
• B. Enable AWS CloudTrail logging. Specify an Amazon S3 bucket as the destination for the logs.
• C. Use Amazon Athena to query the logs in the Amazon S3 bucket for recipient, subject, and time sent.
• D. Create an Amazon CloudWatch log group. Configure Amazon SES to send logs to the log group.
• E. Use Amazon Athena to query the logs in Amazon CloudWatch for recipient, subject, and time sent.

Correct answer: A

Explanation

To track detailed email delivery events including recipient and subject, you must use Amazon SES configuration sets to publish events to Amazon Kinesis Data Firehose, which then loads the data into an Amazon S3 bucket. Once the logs are stored in Amazon S3, Amazon Athena can be used to run ad-hoc SQL queries to search the logs by recipient, subject, and sending time. AWS CloudTrail does not log the granular email content or delivery events required for this troubleshooting.