
Explanation:
Amazon CloudWatch and AWS CloudTrail are the correct services for monitoring and retaining records of account activities related to governance, compliance, and auditing:
Amazon GuardDuty: A threat detection service that continuously monitors for malicious activity and unauthorized behavior, but not primarily for activity logging and retention.
AWS Shield: A managed DDoS protection service that safeguards applications running on AWS, not for activity monitoring and auditing.
AWS WAF: A web application firewall that helps protect web applications from common web exploits, not designed for account activity monitoring and retention.
No comments yet.
Which AWS services allow users to monitor and retain records of account activities that include governance, compliance, and auditing? (Select TWO.)
A
Amazon CloudWatch
B
AWS CloudTrail
C
Amazon GuardDuty
D
AWS Shield
E
AWS WAF