Independence Day Deal! Unlock 25% OFF Today – Limited-Time Offer - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location PL
Mob_nav_barsMENU

Amazon Exam SOA-C02 Topic 2 Question 95 Discussion

Actual exam question for Amazon's SOA-C02 exam
Question #: 95
Topic #: 2
[All SOA-C02 Questions]

A SysOps administrator needs to control access to groups of Amazon EC2 instances using AWS Systems Manager Session Manager. Specific tags on the EC2 instances have already been added.

Which additional actions should the administrator take to control access? (Choose two.)

Show Suggested Answer Hide Answer
Suggested Answer: D

AWS Global Accelerator and Amazon CloudFront are separate services that use the AWS global network and its edge locations around the world. CloudFront improves performance for both cacheable content (such as images and videos) and dynamic content (such as API acceleration and dynamic site delivery). Global Accelerator improves performance for a wide range of applications over TCP or UDP by proxying packets at the edge to applications running in one or more AWS Regions. Global Accelerator is a good fit for non-HTTP use cases, such as gaming (UDP), IoT (MQTT), or Voice over IP, as well as for HTTP use cases that specifically require static IP addresses or deterministic, fast regional failover. Both services integrate with AWS Shield for DDoS protection.

https://medium.com/awesome-cloud/aws-difference-between-application-load-balancer-and-network-load-balancer-cb8b6cd296a4 https://aws.amazon.com/global-accelerator/faqs/?nc1=h_ls


by Quentin at Jul 04, 2024, 01:16 AM

Limited Time Offer

25%

Off

Get Premium SOA-C02 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Felicidad
1 months ago
Hmm, options A and E sound like the winners to me. Though I do wonder if the exam writer has a sense of humor - maybe they'll throw in a trick question about launching the EC2 instances into low Earth orbit.
upvoted 0 times
Mira
15 days ago
User 1: I think option A and E are the way to go.
upvoted 0 times
...
...
Helene
1 months ago
A service account? What is this, Active Directory? We're in the cloud, baby! A and E are the way to go.
upvoted 0 times
...
Pete
1 months ago
Creating a placement group? Really? That's not going to help with access control. I'm sticking with A and E.
upvoted 0 times
Blair
12 days ago
A and E are the correct choices. Placement group is not related to access control.
upvoted 0 times
...
Darrin
23 days ago
Definitely not creating a placement group. A and E are the actions needed for access control.
upvoted 0 times
...
Samira
24 days ago
You're right, A and E are the way to go for controlling access to EC2 instances.
upvoted 0 times
...
Lucille
1 months ago
A and E are the correct choices. Placement groups are not related to access control.
upvoted 0 times
...
...
Hyun
2 months ago
I'm not sure about option B - attaching an IAM role to the instances themselves seems like overkill for this use case. Let's go with A and E.
upvoted 0 times
Lewis
2 months ago
A) Attach an IAM policy to the users or groups that require access to the EC2 instances.
upvoted 0 times
...
...
Walker
2 months ago
I also think creating an IAM policy that grants access based on specific tags is important.
upvoted 0 times
...
Bernadine
2 months ago
I agree with Ty. It's a good way to control access to the EC2 instances.
upvoted 0 times
...
Ty
2 months ago
I think we should attach an IAM policy to the users or groups.
upvoted 0 times
...
Deangelo
2 months ago
I believe we should also create an IAM policy that grants access to EC2 instances with a specific tag.
upvoted 0 times
...
James
2 months ago
Options A and E look like the right choices here. Attaching an IAM policy to users/groups and using a tag-based condition in the policy should give us the access control we need.
upvoted 0 times
Rashad
21 days ago
User 4: Exactly, those two actions should help us control access to the EC2 instances effectively.
upvoted 0 times
...
Selma
21 days ago
User 3: So, we need to attach an IAM role and create an IAM policy with a tag-based condition for access control.
upvoted 0 times
...
Loreen
24 days ago
User 2: Yes, that sounds like a good idea. We can also create an IAM policy with a tag-based condition for access control.
upvoted 0 times
...
Gayla
2 months ago
User 1: I think we should attach an IAM policy to the users or groups that need access.
upvoted 0 times
...
...
Daniela
2 months ago
I agree with Deangelo. That's one of the actions we should take. What's the other one?
upvoted 0 times
...
Deangelo
2 months ago
I think we should attach an IAM policy to the users or groups that need access.
upvoted 0 times
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77