AWS Certified DevOps Engineer – Professional (DOP-C02) — Question 272

An Amazon EC2 Auto Scaling group manages EC2 instances that were created from an AMI. The AMI has the AWS Systems Manager Agent installed. When an EC2 instance is launched into the Auto Scaling group, tags are applied to the EC2 instance.

EC2 instances that are launched by the Auto Scaling group must have the correct operating system configuration.

Which solution will meet these requirements?

Answer options

• A. Create a Systems Manager Run Command document that configures the desired instance configuration. Set up Systems Manager Compliance to invoke the Run Command document when the EC2 instances are not in compliance with the most recent patches.
• B. Create a Systems Manager State Manager association that links to the Systems Manager command document. Create a tag query that runs immediately.
• C. Create a Systems Manager Run Command task that specifies the desired instance configuration. Create a maintenance window in Systems Manager Maintenance Windows that runs daily. Register the Run Command task against the maintenance window. Designate the targets.
• D. Create a Systems Manager Patch Manager patch baseline and a patch group that use the same tags that the Auto Scaling group applies. Register the patch group with the patch baseline. Define a Systems Manager command document to patch the instances Invoke the document by using Systems Manager Run Command.

Correct answer: B

Explanation

Systems Manager State Manager is designed to define and maintain consistent operating system configurations on managed instances. By creating a State Manager association targeted via tags, any newly launched EC2 instance with those tags will automatically and immediately have the configuration applied. Other options either rely on scheduled maintenance windows which delay the setup, or are intended strictly for patch management rather than general OS configuration.