Which combination of steps will meet these requirements with the LEAST effort?
(Choose two.)
Configure access logging for the required API stage.
Configure an AWS CloudTrail trail destination for API Gateway events. Configure filters on the userIdentity, userAgent, and sourceIPAddress fields.
Configure an Amazon S3 destination for API Gateway logs. Run Amazon Athena queries to analyze API access information.
Use Amazon CloudWatch Logs Insights to analyze API access information.
Select the Enable Detailed CloudWatch Metrics option on the required API stage.
Explanations:
Configuring access logging for the API stage will allow API Gateway to log access data. However, this step alone would not provide analysis, but it’s a required first step for logging API requests.
AWS CloudTrail is more suitable for monitoring AWS account activity and API calls related to AWS services. It is not specifically focused on analyzing API access patterns in API Gateway.
While storing logs in Amazon S3 and using Amazon Athena for queries is an option, it is more complex and requires managing S3 storage, Athena queries, and additional effort compared to simpler CloudWatch-based solutions.
CloudWatch Logs Insights is a fully managed service that can be used to easily query and analyze logs from Amazon API Gateway, making it a simple and effective solution for analyzing API access patterns.
Enabling Detailed CloudWatch Metrics provides enhanced API metrics, but it does not specifically analyze access patterns at the level that logs or CloudWatch Logs Insights would. It provides operational metrics, not detailed access patterns.