Here is my 2cents.  Back in the day's when the 2504 came out, folks were worried about the backplane being an issue so some converted to flexconnect.  I have seem large environments where the customer had 5508's as an example and only had one port connected to the network.  So the myth is, does it really help, I don't really think so unless you are crossing the WAN and you want to have majority of the traffic to stay local.  You need to also keep in mind the limitations of flexconnect and make sure that, if you decide to go this route, that the limitations doesn't hurt your design and your existing user experience.  Layer 3 roaming is not supported and there is also a limitation on the number of ap's in a flexconnect group.  Review the flexconnect guide and make sure you understand the various scenarios and limitations specified in that guide.  

You can also test with one ap and actually see if the auditors theory is valid in your situation.  Sometimes filks keep what they hear and see in other environments as "the correct way".  That is not always the case.

I'll add my 2 cents worth too ...

While saying flexconnect like Scott says you do need to check the feature matrix because some features you may be using may not be supported in flexconnect mode.  But actually I suspect your 'auditor' (quotes intentional because probably just someone with no technical knowledge of WLC just following a tick-list template) is actually saying you should implement flexconnect LOCAL SWITCHING because just changing to flex won't make any difference at all (apart from the aforementioned feature support) - do they realise that?

So assuming you changed to flexconnect local switching there is a theoretical gain to be made:

- traffic is no longer being tunnelled in CAPWAP so you could see 1 or 2 ms reduction in latency (removing encapsulation/decapsulation of the traffic).

- the WLC is no longer a bottleneck for the traffic (like Scott said) but if you're within capacity unlikely to make any difference.

- because the traffic is no longer being tunnelled in CAPWAP you can use a larger TCP MSS (1250 is recommended with local mode or flexconnect central switching, has no effect on flex local switching) which could offer some improvement in throughput and less fragmentation of UDP traffic.

You could test to see how much difference these actually make in practice, and then do a cost (of redesign) vs benefit analysis to make an informed decision.  In all likelihood I expect the improvement will be marginal (of the order of 10% my best guess) and likely not justify a redesign.  Chances are users would not notice any difference anyway apart from speedtest improving slightly.

Do you recommend any? We use Zabbix but I am not able to make it work. Any other alternative? Where can I see these numbers in WLC?

I use Prime Infrastructure. I wouldn't anymore buy this as a new product. 

Cisco by now uses a mostly standard netflow format, but make sure your software actually supports Cisco WLC Netflow:

https://www.cisco.com/c/en/us/td/docs/wireless/controller/technotes/8-8/AVC_8point8_dg.html#pgfId-81615

I've made my decision but I am collecting more info for my manager. Now I am going to monitor traffic from/to WLC to verify that WLC uplinks can handle all the traffic. I would test FlexConnect on APs only in case they would insist on configuring it.

As stated many times, FlexConnect is very rarely needed if you don't transfer the data over WAN links. Depending on the size of your network (amount of APs) and the small 3504 WLC, you might saturate the 1 Gbps port. You can work around that by enabling LAG on more ports on the 3504, that way you can increase the throughput further: https://www.cisco.com/c/en/us/td/docs/wireless/controller/technotes/8-5/b_WLC_3504_Release_8_5_Deployment_Guide.html

Nowadays in most enterprise developments your AP density is fairly high, so that all clients have a strong signal with a short path to the AP. That way you can get a lot of performance out of your network, while providing good roaming. The big downside of this is the channel re-use. For this reason you often have 40 or even 20 MHz channels on 5 GHz, to maximize the amount of free channels. But this will vastly reduce the maximum throughput if no users are there (capable client assumed), but will vastly increase the throughput if many users are there.

In other words, with a 160 MHz 802.11ax channel (which limits you to 2 or 3 available channels), you could have > 1 Gbps of throughput with a single capable client. If you reduce this to 20 MHz you now have around 19 available channels, but a maximum throughput of maybe 250 Mbps. Those numbers are sadly only valid if there are no other wireless devices on the same frequency, which sadly doesn't happen in the real world, unless you are in a cellar For this reason you never really reach the high bandwidth when using 80 or 160 MHz channels, as you have way to much co-channel interference and noise which will lower the real throughput. Please note, those channel numbers are for the USA, there are various regulations over the world. In some places you only have one 160 MHz channel, or two/three 80 MHz ones.