ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Security - Specialty All Questions

View all questions & answers for the AWS Certified Security - Specialty exam
Go to Exam

Exam AWS Certified Security - Specialty topic 1 question 453 discussion

Exam question from Amazon's AWS Certified Security - Specialty
Question #: 453
Topic #: 1
[All AWS Certified Security - Specialty Questions]

A company accidentally deleted the private key for an Amazon Elastic Block Store (Amazon EBS)-backed Amazon EC2 instance. A security engineer needs to regain access to the instance.

Which combination of steps will meet this requirement? (Choose two.)

  • A. Stop the instance. Detach the root volume. Generate a new key pair.
  • B. Keep the instance running. Detach the root volume. Generate a new key pair.
  • C. When the volume is detached from the original instance, attach the volume to another instance as a data volume. Modify the authorized_keys file with a new public key. Move the volume back to the original instance. Start the instance.
  • D. When the volume is detached from the original instance, attach the volume to another instance as a data volume. Modify the authorized_keys file with a new private key. Move the volume back to the original instance. Start the instance.
  • E. When the volume is detached from the original instance, attach the volume to another instance as a data volume. Modify the authorized_keys file with a new public key. Move the volume back to the original instance that is running.
Show Suggested Answer Hide Answer
Suggested Answer: AC 🗳️
by D2 at Nov. 29, 2022, 10:52 a.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
kerar
Highly Voted 2 years, 6 months ago
Selected Answer: AC
If you lose the private key for an EBS-backed instance, you can regain access to your instance. You must stop the instance, detach its root volume and attach it to another instance as a data volume, modify the authorized_keys file with a new public key, move the volume back to the original instance, and restart the instance. https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/TroubleshootingInstancesConnecting.html#replacing-lost-key-pai
upvoted 8 times
cherry23
1 year, 11 months ago
Answer is correct but how does generating a new key pair recovers data encrypted by old key?
upvoted 1 times
cherry23
1 year, 11 months ago
Got it. It's ec2 key pair not kms key
upvoted 1 times
...
...
AzureDP900
2 years, 3 months ago
Agreed
upvoted 1 times
...
...
[Removed]
Most Recent 1 year, 8 months ago
Selected Answer: AC
https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/TroubleshootingInstancesConnecting.html#replacing-lost-key-pair Step 1: Create a new key pair Step 2: Get information about the original instance and its root volume Step 3: Stop the original instance Step 4: Launch a temporary instance Step 5: Detach the root volume from the original instance and attach it to the temporary instance Step 6: Add the new public key to authorized_keys on the original volume mounted to the temporary instance Step 7: Unmount and detach the original volume from the temporary instance, and reattach it to the original instance Step 8: Connect to the original instance using the new key pair Step 9: Clean up
upvoted 1 times
...
ygen
2 years, 4 months ago
Selected Answer: AC
If you lose the private key for an EBS-backed instance, you can regain access to your instance. You must stop the instance, detach its root volume and attach it to another instance as a data volume, modify the authorized_keys file with a new public key, move the volume back to the original instance, and restart the instance. For more information about launching, connecting to, and stopping instances, see Instance lifecycle. https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/TroubleshootingInstancesConnecting.html#replacing-lost-key-pair
upvoted 2 times
...
D2
2 years, 6 months ago
Selected Answer: AC
Answer AC https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/TroubleshootingInstancesConnecting.html#replacing-lost-key-pair
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel