An operations team manually patches 500 EC2 instances across 10 AWS accounts every month. This process is error-prone and time-consuming. How can the architect automate this process across all accounts?

Answer options:

Write a cross-account Lambda function to run 'yum update' via SSH.

Use AWS Systems Manager Patch Manager integrated with AWS Organizations. Define a patch baseline and maintenance window.

Use AWS CodeDeploy to deploy OS patches.

Use Amazon Inspector to automatically apply patches.

How to approach this question

Identify the native AWS service for OS patching at scale.

Full Answer

B.Use AWS Systems Manager Patch Manager integrated with AWS Organizations. Define a patch baseline and maintenance window.✓ Correct

AWS Systems Manager Patch Manager automates the process of patching managed instances with security-related updates, supporting multi-account setups via Organizations.

Common mistakes

Confusing Inspector (detection) with Patch Manager (remediation).

Question 44 All questions Question 46

Practice the full AWS Solutions Architect Professional SAP-C02 Practice Exam 6

75 questions · hints · full answers · grading

More questions from this exam

Q01A global enterprise requires highly available hybrid connectivity between its on-premises data ce...Hard Q02An organization has 50 VPCs across two AWS Regions connected via Transit Gateways (TGW). The TGWs...Hard Q03A company uses AWS Organizations. The network team wants to share a central Transit Gateway (TGW)...Medium Q04An enterprise has on-premises data centers in the US and Europe. They want to use the AWS global ...Hard Q05A company requires that all API calls to Amazon S3 from their VPC must not traverse the public in...Medium

View all 75 questions →