5) Name a use case where EC2 Instance Connect is preferred over a bastion host.
EC2 Instance Connect is preferred over a bastion host when you need secure, temporary, and auditable SSH access without maintaining a dedicated server
4) How is access via EC2 Instance Connect logged and monitored in AWS?
Access via EC2 Instance Connect is logged in AWS CloudTrail, which records when a user sends an SSH public key to an instance.
3) List two disadvantages of EC2 Instance Connect
Requires the instance to have a public IP or connectivity via Systems Manager Session Manager/VPN.
Not supported on all Linux distributions out of the box (e.g., requires setup on non-Amazon Linux/Ubuntu)
2)What are the advantages of using browser-based SSH access via EC2 Instance Connect?
No need to manage or share SSH key pairs.
Access controlled through IAM policies.
Temporary one-time SSH keys enhance security.
5) Is a public IP address required for using EC2 Instance Connect? Why or why not?
Yes, a public IP is required for EC2 Instance Connect if you’re connecting over the internet, because the service needs a routable address to reach the instance via SSH.