AWS Certified SysOps Administrator – Associate — Question 67

A company needs to take an inventory of applications that are running on multiple Amazon EC2 instances. The company has configured users and roles with the appropriate permissions for AWS Systems Manager. An updated version of Systems Manager Agent has been installed and is running on every instance. While configuring an inventory collection, a SysOps administrator discovers that not all the instances in a single subnet are managed by Systems Manager.

What must the SysOps administrator do to fix this issue?

Answer options

• A. Ensure that all the EC2 instances have the correct tags for Systems Manager access.
• B. Configure AWS Identity and Access Management Access Analyzer to determine and automatically remediate the issue.
• C. Ensure that all the EC2 instances have an instance profile with Systems Manager access.
• D. Configure Systems Manager to use an interface VPC endpoint.

Correct answer: C

Explanation

The correct answer is C because having an instance profile with the necessary permissions is essential for Systems Manager to manage the EC2 instances. Options A and D could help in specific scenarios, but they do not directly address the requirement for access permissions. Option B is not relevant here as it involves analysis and remediation, rather than ensuring the right permissions for the instances.