SCS-C02 · Question #77
SCS-C02 Question #77: Real Exam Question with Answer & Explanation
Sign in or unlock SCS-C02 to reveal the answer and full explanation for question #77. The question stem and answer options stay visible for context.
Question
A company wants to use AWS Systems Manager Patch Manager to patch Amazon EC2 instances that run Amazon Linux 2. The EC2 instances are running in a single AWS account. No internet connectivity is allowed from any EC2 instances in the account. A security engineer has configured the relevant settings in Patch Manager. The security engineer now needs to ensure that the EC2 instances can connect to the Systems Manager endpoint. Which combination of steps must the security engineer take to meet these requirements? (Choose three.)
Options
- ACreate a gateway VPC endpoint for com.amazonaws.[region].s3.
- BCreate VPC endpoints for com.amazonaws.[region].ec2messages and
- CCreate a NAT gateway.
- DUpdate the route tables to route Systems Manager traffic through the NAT gateway.
- EUpdate the route tables with a route to the gateway VPC endpoint.
- FUpdate the route tables to route the update traffic through the NAT gateway.
Unlock SCS-C02 to see the answer
You've previewed enough free SCS-C02 questions. Unlock SCS-C02 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.