SAA-C03 · Question #333
SAA-C03 Question #333: Real Exam Question with Answer & Explanation
Sign in or unlock SAA-C03 to reveal the answer and full explanation for question #333. The question stem and answer options stay visible for context.
Question
A company runs a three-tier web application in a VPC on AWS. The company deployed an Application Load Balancer (ALB) in a public subnet. The web tier and application tier Amazon EC2 instances are deployed in a private subnet. The company uses a self-managed MySQL database that runs on EC2 instances in an isolated private subnet for the database tier. The company wants a mechanism that will give a DevOps team the ability to use SSH to access all the servers. The company also wants to have a centrally managed log of all connections made to the servers. Which combination of solutions will meet these requirements with the MOST operational efficiency? (Select TWO.)
Options
- ACreate a bastion host in the public subnet. Configure security groups in the public, private, and
- BCreate an interface VPC endpoint for AWS Systems Manager Session Manager. Attach the
- CCreate an IAM policy that grants access to AWS Systems Manager Session Manager. Attach the
- DCreate a gateway VPC endpoint for AWS Systems Manager Session Manager. Attach the
- EAttach an AmazonSSMManagedInstanceCore AWS managed IAM policy to all the EC2 instance
Unlock SAA-C03 to see the answer
You've previewed enough free SAA-C03 questions. Unlock SAA-C03 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.