A Developer's laptop was stolen. The laptop was not encrypted, and it contained the SSH key used to access multiple Amazon EC2 instances. A Security Engineer has verified that the key has not been used, and has blocked port 22 to all EC2 instances while developing a response plan. How can the Security Engineer further protect currently running instances?
A) Delete the key-pair key from the EC2 console, then create a new key pair.
B) Use the modify-instance-attribute API to change the key on any EC2 instance that is using the key. Use the modify-instance-attribute API to change the key on any EC2 instance that is using the key.
C) Use the EC2 RunCommand to modify the authorized_keys file on any EC2 instance that is using the key.
D) Update the key pair in any AMI used to launch the EC2 instances, then restart the EC2 instances.
Correct Answer:
Verified
Q112: During a recent security audit, it was
Q113: The Information Technology department has stopped using
Q114: A company has a forensic logging use
Q115: A Security Engineer has been asked to
Q116: A company has multiple VPCs in their
Q118: For compliance reasons, an organization limits the
Q119: A distributed web application is installed across
Q120: A company recently experienced a DDoS attack
Q121: An application uses Amazon Cognito to manage
Q122: A company had one of its Amazon
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents