AWS Certified Solutions Architect Professional SAP-C02 Practice Question

AWS Systems Manager Quick Setup integrates directly with AWS Organizations. Quick Setup can:

• Enable the Default Host Management Configuration, which keeps SSM Agent and (optionally) the CloudWatch agent current on every managed EC2 instance across all member accounts and Regions.
• Create patch policies that use Patch Manager and State Manager to apply a prescribed patch baseline on a defined schedule (for example, every Saturday at 02:00) while centrally recording patch-compliance results.
• Automatically deploy the same configuration to any new account that is added to the organization and display roll-out status and drift in the Quick Setup dashboard.

Because Quick Setup is a fully managed Systems Manager capability, there are no Chef/Puppet servers or other infrastructure to maintain.

• CloudFormation StackSets (distractor) can push templates cross-account, but you must design, operate, and update the templates yourself, and you must still configure maintenance windows, patch baselines, and compliance reporting manually.
• AWS OpsWorks for Chef Automate (distractor) requires running and patching a Chef server, and the managed service reached end of life in May 2024.
• AWS Config rules with auto-remediation (distractor) detect and remediate drift but do not provide a turnkey way to keep SSM/CloudWatch agents current or to schedule fleet-wide patching; they also require authoring rules and remediation documents per account.

Therefore, Systems Manager Quick Setup is the most operationally efficient choice.