A startup company hosts a fleet of Amazon EC2 instances in private subnets using the latest Amazon Linux 2 AMI. The company's engineers rely heavily on SSH access to the instances for troubleshooting.
The company's existing architecture includes the following:
✑ A VPC with private and public subnets, and a NAT gateway
✑ Site-to-Site VPN for connectivity with the on-premises environment
✑ EC2 security groups with direct SSH access from the on-premises environment
The company needs to increase security controls around SSH access and provide auditing of commands run by the engineers.
Which strategy should a solutions architect use?
[Removed]
1 year, 9 months ago[Removed]
1 year, 9 months agoevargasbrz
1 year, 11 months agobreathingcloud
2 years agomrgreatness
2 years agoSureNot
2 years agoalxjandroleiva
2 years, 1 month agosb333
2 years, 2 months agoasfsdfsdf
2 years, 4 months agobobsmith2000
2 years, 6 months agoshailurtm2001
2 years, 7 months agouser0001
2 years, 6 months agoDdssssss
2 years, 5 months agobobsmith2000
2 years, 6 months ago