ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified SysOps Administrator - Associate All Questions

View all questions & answers for the AWS Certified SysOps Administrator - Associate exam
Go to Exam

Exam AWS Certified SysOps Administrator - Associate topic 1 question 365 discussion

Exam question from Amazon's AWS Certified SysOps Administrator - Associate
Question #: 365
Topic #: 1
[All AWS Certified SysOps Administrator - Associate Questions]

A company's SysOps administrator manages a fleet of hundreds of Amazon EC2 instances that run Windows-based workloads and Linux-based workloads. Each EC2 instance has a tag that identifies its operating system. All the EC2 instances run AWS Systems Manager Session Manager.

A zero-day vulnerability is reported, and no patches are available. The company's security team provides code for all the relevant operating systems to reduce the risk of the vulnerability. The SysOps administrator needs to implement the code on the EC2 instances and must provide a report that shows that the code has successfully run on all the instances.

What should the SysOps administrator do to meet these requirements as quickly as possible?

  • A. Use Systems Manager Run Command. Choose either the AWS-RunShellScript document or the AWS-RunPowerShellScript document. Configure Run Command with the code from the security team. Specify the operating system tag in the Targets parameter. Run the command. Provide the command history's evidence to the security team.
  • B. Create an AWS Lambda function that connects to the EC2 instances through Session Manager. Configure the Lambda function to identify the operating system, run the code from the security team, and return the results to an Amazon RDS DB instance. Query the DB instance for the results. Provide the results as evidence to the security team.
  • C. Log on to each EC2 instance. Run the code from the security team on each EC2 instance. Copy and paste the results of each run into a single spreadsheet. Provide the spreadsheet as evidence to the security team.
  • D. Update the launch templates of the EC2 instances to include the code from the security team in the user data. Relaunch the EC2 instances by using the updated launch templates. Retrieve the EC2 instance logs of each instance. Provide the EC2 instance logs as evidence to the security team.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by jas26says at July 21, 2023, 2:42 p.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
eesa
10 months ago
option A using Systems Manager Run Command is the most efficient and effective way to implement the security code provided by the security team across all EC2 instances and to provide a report or evidence of successful execution to the security team
upvoted 1 times
...
nizammusasoac02
1 year, 8 months ago
Selected Answer: A
run command
upvoted 3 times
...
nizammusasoac02
1 year, 8 months ago
Selected Answer: A
A is for sure
upvoted 3 times
...
Christina666
1 year, 9 months ago
Selected Answer: A
Explanation: The AWS Systems Manager Run Command allows the SysOps administrator to execute commands on multiple EC2 instances simultaneously, which is crucial for managing a large fleet of instances efficiently. By using the AWS-RunShellScript or AWS-RunPowerShellScript documents, the SysOps administrator can run the code provided by the security team on both Windows-based and Linux-based instances, as required. The SysOps administrator can specify the operating system tag as a target parameter, ensuring that the code is only executed on the relevant instances, which saves time and prevents errors. AWS Systems Manager keeps a history of Run Command executions, providing an easy way to provide evidence to the security team that the code has successfully run on all instances.
upvoted 4 times
...
trvtrinh
1 year, 9 months ago
A Option A is the most efficient and automated way to quickly implement the code on all EC2 instances and provide evidence to the security team. AWS Systems Manager Run Command allows you to run commands on multiple instances simultaneously, making it ideal for fleet management. By choosing the appropriate AWS-RunShellScript (for Linux) or AWS-RunPowerShellScript (for Windows) document, the SysOps administrator can execute the code provided by the security team on the instances based on their operating system tags. The command history provides a record of the execution, and this evidence can be shared with the security team to demonstrate that the code has successfully run on all instances.
upvoted 2 times
...
jas26says
1 year, 9 months ago
Selected Answer: A
You don´t need to re-image your instances, just apply the code with RunCommand.
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago