A large financial application generates logs in a comma-separated format and saves them to S3 for later processing. After each file is generated, a message is sent to an SQS queue. EC2 instances monitoring the SQS queue are running behind a load balancer in an Auto Scaling group. An EC2 instance will pick up the message from SQS and start processing it. Once the processing is completed, the processed files are stored into another S3 bucket to be used later in a reporting process. The EC2 instances load their application from S3 on startup. The application release logs show that there have been many updates to the application in the last month. The data security and monitoring team wants to check the application logs to ensure that the logs do not contain any sensitive information. How can you complete this process effectively without interrupting the Auto Scaling or the application release cycle?

Answer options:

A.Enable CloudTrail and redirect all the system logs to an S3 bucket. Download the log files from the S3 bucket and check for sensitive information.
B.Suspend the Auto Scaling termination process, and then log into the machines that started recently and check the logs.
C.Install the CloudWatch Logs Agent and publish the logs to CloudWatch. Trigger a Lambda function to process the logs.
D.Take daily snapshots of the EC2 instance volumes, and then mount the recent snapshots to another instance and check the logs.

Correct Answer: C because Cloudwatch logs provide information on the application behavior. A Lambda function can process CloudWatch Logs.
Option A is INCORRECT because the CloudTrail only monitors the API calls made to AWS resources and does not record the application logs.
Option B is INCORRECT because suspending the ASG terminate Instances is not effective and may affect the application release cycle during high utilization period. Administrators should be able to get the logs without even log in to EC2 Instances.
Option D is INCORRECT because this method is not straight-forward or cost-effective.