AWS Certified SysOps Administrator – Associate — Question 367

A company needs to implement a solution to install specific software on Amazon EC2 instances when the instances launch.

Which solution will meet this requirement?

Answer options

• A. Configure AWS Systems Manager State Manager associations to bootstrap the EC2 instances with the required software at launch.
• B. Use the Amazon CloudWatch agent to detect EC2 InstanceStart events and to inject the required software. Modify the InstanceRole IAM role to add permissions for the StartTask API operation.
• C. Use Amazon Inspector to detect EC2 launch events. Configure Amazon Inspector to install the required software as part of lifecycle hooks for theEC2launch events.
• D. Use AWS Security Hub remediation actions to install the required software at launch.

Correct answer: A

Explanation

AWS Systems Manager State Manager is designed to automate the process of keeping EC2 instances in a defined state, making it ideal for bootstrapping instances with specific software upon launch. In contrast, Amazon CloudWatch agent is used for monitoring metrics, while Amazon Inspector and AWS Security Hub are security assessment and compliance tools, none of which support software installation lifecycle management.