ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified SysOps Administrator - Associate All Questions

View all questions & answers for the AWS Certified SysOps Administrator - Associate exam
Go to Exam

Exam AWS Certified SysOps Administrator - Associate topic 1 question 346 discussion

Exam question from Amazon's AWS Certified SysOps Administrator - Associate
Question #: 346
Topic #: 1
[All AWS Certified SysOps Administrator - Associate Questions]

A company's security policy states that connecting to Amazon EC2 instances is not permitted through SSH and ROP. If access is required, authorized staff can connect to instances by using AWS Systems Manager Session Manager.

Users report that they are unable to connect to one specific Amazon EC2 instance that is running Ubuntu and has AWS Systems Manager Agent (SSM Agent) pre-installed. These users are able to use Session Manager to connect to other instances in the same subnet, and they are in an IAM group that has Session Manager permission for all instances.

What should a SysOps administrator do to resolve this issue?

  • A. Add an inbound rule for port 22 in the security group associated with the Ubuntu instance.
  • B. Assign the AmazonSSMManagedInstanceCore managed policy to the EC2 instance profile for the Ubuntu instance.
  • C. Configure the SSM Agent to log in with a user name of “ubuntu”.
  • D. Generate a new key pair, configure Session Manager to use this new key pair, and provide the private key to the users.
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by Pete987 at June 30, 2023, 5:32 p.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
[Removed]
9 months, 4 weeks ago
B To resolve the issue of users being unable to connect to the specific EC2 instance using Session Manager, the SysOps administrator should assign the AmazonSSMManagedInstanceCore managed policy to the EC2 instance profile for the Ubuntu instance. This managed policy provides the necessary permissions for the SSM Agent to communicate with the Systems Manager service, which is required for Session Manager to work. Once the policy is attached to the instance profile, users should be able to connect to the instance using Session Manager.
upvoted 3 times
...
Pete987
10 months, 1 week ago
Selected Answer: B
By assigning the AmazonSSMManagedInstanceCore managed policy to the EC2 instance profile associated with the Ubuntu instance, you grant the necessary permissions for the instance to communicate with AWS Systems Manager. This policy includes the required permissions for Session Manager to establish connections to EC2 instances.
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago