Logo
AWS Certified Cloud Practitioner / Question #779 of 719

Question #779

Which AWS service can provide detailed information about the creation of an Amazon S3 bucket?

A

AWS Identity and Access Management (IAM)
B

AWS CloudTrail
C

Amazon S3 Inventory
D

AWS Config

Explanation

The correct answer is B (AWS CloudTrail) because CloudTrail records AWS API calls and management events, including the creation of S3 buckets. It provides detailed information such as the identity of the requester, timestamp, and API parameters.

A (IAM) is incorrect because IAM manages permissions, not event logging. C (S3 Inventory) focuses on object-level reporting, not bucket creation events. D (AWS Config) tracks resource configuration changes but does not log the initial API call details for bucket creation. Key takeaway: CloudTrail is the primary service for auditing API-level actions, while AWS Config focuses on resource state history.

Answer

The correct answer is: B