A SysOps Administrator must use a bastion host to administer a fleet of Amazon EC2 instances. All access to the bastion host is managed by the Security team. What is the MOST secure way for the Security team to provide the SysOps Administrator access to the bastion host?
A) Assign the same IAM role to the Administrator that is assigned to the bastion host.
B) Provide the Administrator with the SSH key that was used for the bastion host when it was originally launched.
C) Create a new IAM role with the same permissions as the Security team, and assign it to the Administrator.
D) Create a new administrative account on the bastion host, and provide those credentials to the Administrator using AWS Secrets Manager.
Correct Answer:
Verified
Q336: A Systems Administrator is responsible for maintaining
Q337: After installing and configuring the Amazon CloudWatch
Q338: A SysOps Administrator needs to confirm that
Q339: An application is being developed that will
Q340: A company is deploying a legacy web
Q342: A database is running on an Amazon
Q343: After a network change, application servers cannot
Q344: A company is running a popular social
Q345: A company's Security team wants to track
Q346: A company wants to ensure that each
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents