SOA-C02 · Question #655
SOA-C02 Question #655: Real Exam Question with Answer & Explanation
Sign in or unlock SOA-C02 to reveal the answer and full explanation for question #655. The question stem and answer options stay visible for context.
Question
A company has an AWS Config rule that identifies open SSH ports in security groups. The rule has an automatic remediation action to delete the SSH inbound rule for noncompliant security groups. The remediation action is causing a problem because some business units require SSH access to their Amazon EC2 instances. The business units can provide a list of trusted IP addresses to reduce the number of source IP addresses that are allowed to connect. A SysOps administrator must modify the remediation action to change the SSH inbound rule instead of delete the rule. Which solution will meet these requirements?
Options
- ACreate a new AWS Systems Manager Automation runbook that adds an IP set to the security
- BCreate a new AWS Systems Manager Automation runbook that updates the security group's
- CCreate an AWS Lambda function that adds an IP set to the security group's inbound rule. Update
- DCreate an AWS Lambda function that updates the security group's inbound rule with the IP
Unlock SOA-C02 to see the answer
You've previewed enough free SOA-C02 questions. Unlock SOA-C02 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.