Topic 1 Question 71
A SysOps administrator is using AWS Systems Manager Patch Manager to patch a fleet of Amazon EC2 instances. The SysOps administrator has configured a patch baseline and a maintenance window. The SysOps administrator also has used an instance tag to identify which instances to patch. The SysOps administrator must give Systems Manager the ability to access the EC2 instances. Which additional action must the SysOps administrator perform to meet this requirement?
Add an inbound rule to the instances' security group.
Attach an IAM instance profile with access to Systems Manager to the instances.
Create a Systems Manager activation. Then activate the fleet of instances.
Manually specify the instances to patch instead of using tag-based selection.
ユーザの投票
コメント(3)
- 正解だと思う選択肢: B
By default, AWS Systems Manager doesn't have permission to perform actions on your instances. Grant access by using an AWS Identity and Access Management (IAM) instance profile. An instance profile is a container that passes IAM role information to an Amazon Elastic Compute Cloud (Amazon EC2) instance at launch. You can create an instance profile for Systems Manager by attaching one or more IAM policies that define the necessary permissions to a new role or to a role you already created.
https://docs.aws.amazon.com/systems-manager/latest/userguide/setup-instance-profile.html
👍 6princajen2022/09/01 Ans: B
👍 1Liongeek2022/11/17- 正解だと思う選択肢: B
bbbbbbbbb
👍 1michaldavid2022/12/09
シャッフルモード