Cyber Monday 2024! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Amazon Exam ANS-C01 Topic 4 Question 35 Discussion

Actual exam question for Amazon's ANS-C01 exam
Question #: 35
Topic #: 4
[All ANS-C01 Questions]

A company needs to manage Amazon EC2 instances through command line interfaces for Linux hosts and Windows hosts. The EC2 instances are deployed in an environment in which there is

no route to the internet. The company must implement role-based access control for management of the instances. The company has a standalone on-premises environment.

Which approach will meet these requirements with the LEAST maintenance overhead?

Show Suggested Answer Hide Answer
Suggested Answer: B

The correct approach is to use AWS Systems Manager Session Manager, which allows you to manage your EC2 instances through a secure and browser-based interface. By deploying and configuring SSM Agent on each instance, you can enable Session Manager to communicate with the instances. By deploying VPC endpoints for Session Manager, you can enable the instances to connect to the AWS service without requiring an internet gateway, NAT device, or VPN connection. You can also use IAM policies and SSM documents to implement role-based access control for managing the instances. This approach has the least maintenance overhead, as it does not require any additional infrastructure or configuration.


by Verdell at Sep 06, 2024, 01:52 PM

Limited Time Offer

25%

Off

Get Premium ANS-C01 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Dorothy
2 months ago
That's true, Ernestine. Option C could also work well, but I still think option B is the most efficient choice.
upvoted 0 times
...
Ernestine
2 months ago
But wouldn't setting up a Site-to-Site VPN connection in option C also meet the requirements effectively?
upvoted 0 times
...
King
2 months ago
I see your point, Dorothy. Option B does seem like a simpler solution with less maintenance overhead.
upvoted 0 times
...
Dorothy
2 months ago
I disagree, I believe option B is better as it involves using Systems Manager Agent and Session Manager.
upvoted 0 times
...
Olene
2 months ago
Is it just me, or does Option D sound like it might involve a 'special' appliance that someone's cousin's friend's uncle invented? I'll stick with the proven AWS tools, thanks.
upvoted 0 times
James
25 days ago
Definitely, let's go with the proven AWS tools for managing the EC2 instances.
upvoted 0 times
...
Noble
26 days ago
Yeah, setting up an AWS Direct Connect or Site-to-Site VPN seems like more work. Systems Manager Agent sounds simpler.
upvoted 0 times
...
Luke
1 months ago
I think Option B with Systems Manager Agent and Session Manager is the way to go for least maintenance overhead.
upvoted 0 times
...
Penney
1 months ago
Option D does sound a bit sketchy. I agree, sticking with AWS tools is the safer choice.
upvoted 0 times
...
...
Titus
3 months ago
Haha, I'm just glad I don't have to deal with setting up that Direct Connect or VPN stuff. Option B for the win!
upvoted 0 times
Alex
2 months ago
No need to worry about complex networking configurations with Option B.
upvoted 0 times
...
Tu
2 months ago
Definitely, using Session Manager for access control is a simpler solution.
upvoted 0 times
...
Celeste
2 months ago
Yeah, Option B with Systems Manager Agent seems much easier.
upvoted 0 times
...
Tori
2 months ago
I agree, setting up Direct Connect or VPN sounds like a hassle.
upvoted 0 times
...
...
Ernestine
3 months ago
I think option A is the best choice because it involves setting up a Direct Connect connection.
upvoted 0 times
...
Ressie
3 months ago
Definitely B. The AWS Systems Manager tools should provide a more streamlined approach to managing the instances in this scenario.
upvoted 0 times
Caprice
2 months ago
I think setting up an AWS Direct Connect connection would be too much maintenance overhead.
upvoted 0 times
...
Graham
2 months ago
I agree, using AWS Systems Manager Agent and Session Manager seems like the best option.
upvoted 0 times
...
...
Toi
3 months ago
I agree, B is the best choice here. Maintaining a Direct Connect or VPN connection could be a real headache, especially with no internet access.
upvoted 0 times
...
Andra
3 months ago
Option B seems like the way to go. The SSM Agent and Session Manager should make it easier to manage the instances without needing to set up a complex network connection.
upvoted 0 times
Elouise
3 months ago
Yeah, setting up VPC endpoints for Session Manager will definitely simplify managing the instances.
upvoted 0 times
...
Pamella
3 months ago
I agree, Option B with SSM Agent and Session Manager seems like the most efficient choice.
upvoted 0 times
...
...

Save Cancel