Answer-first summary for fast verification
Answer: Install the AWS Systems Manager Agent (SSM Agent) on the EC2 instances. Configure Systems Manager Patch Manager to install patches on the instances every week.
AWS Systems Manager Patch Manager automates the process of patching managed instances with both security-related updates and other types of updates. By installing the SSM Agent, the instances become managed instances, allowing Patch Manager to handle the patching tasks automatically and efficiently without the need for manual SSH operations.
Author: Ritesh Yadav
Ultimate access to all questions.
A company has multiple Amazon EC2 instances that run the Ubuntu operating system (OS). The company must patch the OS regularly. A CloudOps engineer installs patches manually every week. The company adds new EC2 instances that run Ubuntu continuously. The CloudOps engineer needs to automate the patching process.
Which solution will meet this requirement in the MOST operationally efficient way?
A
Create an AWS Lambda function to connect to the EC2 instances by using SSH and to install the patches. Configure the Lambda function to run every week.
B
Install the AWS Systems Manager Agent (SSM Agent) on the EC2 instances. Configure Systems Manager Patch Manager to install patches on the instances every week.
C
Use AWS Systems Manager Inventory to identify unpatched EC2 instances and to install OS patches.
No comments yet.