AWS Certified Solutions Architect – Professional (SAP-C02) — Question 14

A company needs to implement a patching process for its servers. The on-premises servers and Amazon EC2 instances use a variety of tools to perform patching. Management requires a single report showing the patch status of all the servers and instances.
Which set of actions should a solutions architect take to meet these requirements?

Answer options

• A. Use AWS Systems Manager to manage patches on the on-premises servers and EC2 instances. Use Systems Manager to generate patch compliance reports.
• B. Use AWS OpsWorks to manage patches on the on-premises servers and EC2 instances. Use Amazon QuickSight integration with OpsWorks to generate patch compliance reports.
• C. Use an Amazon EventBridge rule to apply patches by scheduling an AWS Systems Manager patch remediation job. Use Amazon Inspector to generate patch compliance reports.
• D. Use AWS OpsWorks to manage patches on the on-premises servers and EC2 instances. Use AWS X-Ray to post the patch status to AWS Systems Manager OpsCenter to generate patch compliance reports.

Correct answer: A

Explanation

The correct answer is A because AWS Systems Manager provides a unified platform to manage patching across both on-premises servers and EC2 instances, along with the capability to generate comprehensive patch compliance reports. Options B and D involve using AWS OpsWorks, which is not as effective for this particular requirement, and option C incorrectly suggests using Amazon Inspector for compliance reporting instead of Systems Manager.