AWS Certified SysOps Administrator – Associate (legacy) — Question 222

You are designing a system that has a Bastion host. This component needs to be highly available without human intervention.
Which of the following approaches would you select?

Answer options

• A. Run the bastion on two instances one in each AZ
• B. Run the bastion on an active Instance in one AZ and have an AMI ready to boot up in the event of failure
• C. Configure the bastion instance in an Auto Scaling group. Specify the Auto Scaling group to include multiple AZs but have a min-size of 1 and max-size of 1
• D. Configure an ELB in front of the bastion instance

Correct answer: C

Explanation

The correct answer is C because configuring the bastion instance in an Auto Scaling group allows for automated recovery and ensures it remains available without human intervention. Option A would not provide automatic recovery, while option B relies on a manual step to launch the AMI in case of failure. Option D does not address the high availability requirement of the bastion itself, as an ELB alone does not provide redundancy for the instance.