Multiple Choice
A company plans to stop using Amazon EC2 key pairs for SSH access, and instead plans to use AWS Systems Manager Session Manager. To further enhance security, access to Session Manager must take place over a private network only. Which combinations of actions will accomplish this? (Choose two.)
A) Allow inbound access to TCP port 22 in all associated EC2 security groups from the VPC CIDR range.
B) Attach an IAM policy with the necessary Systems Manager permissions to the existing IAM instance profile.
C) Create a VPC endpoint for Systems Manager in the desired Region.
D) Deploy a new EC2 instance that will act as a bastion host to the rest of the EC2 instance fleet.
E) Remove any default routes in the associated route tables.
Correct Answer:
Verified
Correct Answer:
Verified
Q414: Which status represents a failure state in
Q415: For AWS Auto Scaling, what is the
Q416: Using the AWS CLI, which command would
Q417: A company is deploying a new application
Q418: When specifying multiple variable names and values
Q420: A user is defining a policy for
Q421: A company recently launched an application that
Q422: A DevOps engineer is implementing governance controls
Q423: After a recent audit, a company decided
Q424: You need the absolute highest possible network