For a medtech startup, Santosh needs to set up an Amazon Redshift database. The database will contain personally identifiable information which is sensitive. To be able to meet all the regulatory and legal requirements, logging is critical. Santosh received the following requirements about logs from the Head of Engineering:
1. The logs need to have the details about all database authentication attempts, connections, and disconnections. 2. The logs also need to have also details of each query that was run on the database and which database user ran that query.
What would you recommend? A: Enable Amazon Redshift Enhanced VPC Routing and enable VPC Flow Logs to monitor traffic. B: Allow access to the database using AWS IAM only and log access using AWS CloudTrail. C: Enable and download audit reports from AWS Artifact. D: Enable audit logging for Amazon Redshift using the AWS Management Console or CLI.