Amazon Exam SOA-C01 Topic 4 Question 10 Discussion

Actual exam question for Amazon's SOA-C01 exam

Question #: 10
Topic #: 4

A security audit revealed that the security groups in a VPC have ports 22 and 3389 open to all, introducing a possible threat that instances can be stopped or configurations can be modified. A SysOps administrator needs to automate remediation.

What should the administrator do to meet these requirements?

ACreate an 1AM managed policy to deny access to ports 22 and 3389 on any security groups in a VPC.

BDefine an AWS Config rule and remediation action with AWS Systems Manager automation documents.

CEnable AWS Trusted Advisor to remediate public port access.

DUse AWS Systems Manager configuration compliance to remediate public port access.

Show Suggested Answer

Suggested Answer: B

by Latrice at May 08, 2022, 02:29 PM

Limited Time Offer

25%

Off

Get Premium SOA-C01 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!