5) Name a use case where EC2 Instance Connect is preferred over a bastion host.

EC2 Instance Connect is preferred over a bastion host when you need secure, temporary, and auditable SSH access without maintaining a dedicated server

4) How is access via EC2 Instance Connect logged and monitored in AWS?

Access via EC2 Instance Connect is logged in AWS CloudTrail, which records when a user sends an SSH public key to an instance.

3) List two disadvantages of EC2 Instance Connect

Requires the instance to have a public IP or connectivity via Systems Manager Session Manager/VPN.

Not supported on all Linux distributions out of the box (e.g., requires setup on non-Amazon Linux/Ubuntu)

2)What are the advantages of using browser-based SSH access via EC2 Instance Connect?

No need to manage or share SSH key pairs.
Access controlled through IAM policies.
Temporary one-time SSH keys enhance security.

5) Is a public IP address required for using EC2 Instance Connect? Why or why not?

Yes, a public IP is required for EC2 Instance Connect if you’re connecting over the internet, because the service needs a routable address to reach the instance via SSH.