Amazon Exam SOA-C02 Topic 2 Question 95 Discussion

Actual exam question for Amazon's SOA-C02 exam

Question #: 95
Topic #: 2

A SysOps administrator needs to control access to groups of Amazon EC2 instances using AWS Systems Manager Session Manager. Specific tags on the EC2 instances have already been added.

Which additional actions should the administrator take to control access? (Choose two.)

AAttach an IAM policy to the users or groups that require access to the EC2 instances.

BAttach an IAM role to control access to the EC2 instances.

CCreate a placement group for the EC2 instances and add a specific tag.

DCreate a service account and attach it to the EC2 instances that need to be controlled.

ECreate an IAM policy that grants access to any EC2 instances with a tag specified in the Condition element.

Show Suggested Answer

Suggested Answer: D

AWS Global Accelerator and Amazon CloudFront are separate services that use the AWS global network and its edge locations around the world. CloudFront improves performance for both cacheable content (such as images and videos) and dynamic content (such as API acceleration and dynamic site delivery). Global Accelerator improves performance for a wide range of applications over TCP or UDP by proxying packets at the edge to applications running in one or more AWS Regions. Global Accelerator is a good fit for non-HTTP use cases, such as gaming (UDP), IoT (MQTT), or Voice over IP, as well as for HTTP use cases that specifically require static IP addresses or deterministic, fast regional failover. Both services integrate with AWS Shield for DDoS protection.

https://medium.com/awesome-cloud/aws-difference-between-application-load-balancer-and-network-load-balancer-cb8b6cd296a4 https://aws.amazon.com/global-accelerator/faqs/?nc1=h_ls

by Quentin at Jul 04, 2024, 01:16 AM

Limited Time Offer

25%

21 days ago

I think we should attach an IAM policy to the users or groups that need access.

upvoted 0 times

...