Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

Amazon Exam ANS-C01 Topic 4 Question 35 Discussion

Actual exam question for Amazon's ANS-C01 exam
Question #: 35
Topic #: 4
[All ANS-C01 Questions]

A company needs to manage Amazon EC2 instances through command line interfaces for Linux hosts and Windows hosts. The EC2 instances are deployed in an environment in which there is

no route to the internet. The company must implement role-based access control for management of the instances. The company has a standalone on-premises environment.

Which approach will meet these requirements with the LEAST maintenance overhead?

Show Suggested Answer Hide Answer
Suggested Answer: B

The correct approach is to use AWS Systems Manager Session Manager, which allows you to manage your EC2 instances through a secure and browser-based interface. By deploying and configuring SSM Agent on each instance, you can enable Session Manager to communicate with the instances. By deploying VPC endpoints for Session Manager, you can enable the instances to connect to the AWS service without requiring an internet gateway, NAT device, or VPN connection. You can also use IAM policies and SSM documents to implement role-based access control for managing the instances. This approach has the least maintenance overhead, as it does not require any additional infrastructure or configuration.


Contribute your Thoughts:

Dorothy
9 days ago
That's true, Ernestine. Option C could also work well, but I still think option B is the most efficient choice.
upvoted 0 times
...
Ernestine
10 days ago
But wouldn't setting up a Site-to-Site VPN connection in option C also meet the requirements effectively?
upvoted 0 times
...
King
11 days ago
I see your point, Dorothy. Option B does seem like a simpler solution with less maintenance overhead.
upvoted 0 times
...
Dorothy
12 days ago
I disagree, I believe option B is better as it involves using Systems Manager Agent and Session Manager.
upvoted 0 times
...
Olene
15 days ago
Is it just me, or does Option D sound like it might involve a 'special' appliance that someone's cousin's friend's uncle invented? I'll stick with the proven AWS tools, thanks.
upvoted 0 times
...
Titus
1 months ago
Haha, I'm just glad I don't have to deal with setting up that Direct Connect or VPN stuff. Option B for the win!
upvoted 0 times
Celeste
14 days ago
Yeah, Option B with Systems Manager Agent seems much easier.
upvoted 0 times
...
Tori
22 days ago
I agree, setting up Direct Connect or VPN sounds like a hassle.
upvoted 0 times
...
...
Ernestine
1 months ago
I think option A is the best choice because it involves setting up a Direct Connect connection.
upvoted 0 times
...
Ressie
1 months ago
Definitely B. The AWS Systems Manager tools should provide a more streamlined approach to managing the instances in this scenario.
upvoted 0 times
Caprice
12 days ago
I think setting up an AWS Direct Connect connection would be too much maintenance overhead.
upvoted 0 times
...
Graham
17 days ago
I agree, using AWS Systems Manager Agent and Session Manager seems like the best option.
upvoted 0 times
...
...
Toi
1 months ago
I agree, B is the best choice here. Maintaining a Direct Connect or VPN connection could be a real headache, especially with no internet access.
upvoted 0 times
...
Andra
1 months ago
Option B seems like the way to go. The SSM Agent and Session Manager should make it easier to manage the instances without needing to set up a complex network connection.
upvoted 0 times
Elouise
26 days ago
Yeah, setting up VPC endpoints for Session Manager will definitely simplify managing the instances.
upvoted 0 times
...
Pamella
29 days ago
I agree, Option B with SSM Agent and Session Manager seems like the most efficient choice.
upvoted 0 times
...
...

Save Cancel