SAA-C03 · Question #801
SAA-C03 Question #801: Real Exam Question with Answer & Explanation
Sign in or unlock SAA-C03 to reveal the answer and full explanation for question #801. The question stem and answer options stay visible for context.
Question
A company needs to provide secure remote access for administrators to manage Amazon EC2 instances that are located in private subnets. The company needs a solution that uses the following specifications: - All shell commands and session activity are centrally logged for auditing purposes - Administrators authenticate by using multi-factor authentication (MFA) - Instances do not have public IP addresses and do not allow inbound access from the internet Which solution will meet these requirements with the LEAST operational overhead?
Options
- AUse AWS Systems Manager Session Manager and enable session logging to Amazon
- BConfigure an EC2 Instance Connect Endpoint. Enforce IAM based MFA. Use AWS CloudTrail to
- CInstall and configure OpenSSH with local shell history logging on each EC2 instance. Use a NAT
- DDeploy a bastion host in a public subnet with MFA enabled SSH access. Install the CloudWatch
Unlock SAA-C03 to see the answer
You've previewed enough free SAA-C03 questions. Unlock SAA-C03 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.