PCCSE V1

Which statement accurately characterizes SSO Integration on Prisma Cloud?A . Prisma Cloud supports IdP initiated SSO, and its SAML endpoint supports the POST and GET methods.B . Okta, Azure Active Directory, PingID, and others are supported via SAMD . An administrator can configure different Identity Providers (IdP) for all the...

A customer has serverless functions that are deployed in multiple clouds. Which serverless cloud provider is covered be “overly permissive service access” compliance check?A . AlibabaB . GCPC . AWSD . AzureView AnswerAnswer: C Explanation: Reference: https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-admin-compute/compliance/serverless.html

What is the maximum number of access keys a user can generate in Prisma Cloud with a System Admin role?A . 1B . 2C . 3D . 4View AnswerAnswer: B Explanation: Reference: https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-admin/manage-prisma-cloud-administrators/create-access-keys.html#:~:text=You%20can%20enable%20API%20access,generate%20one%20access %20key%20only

An S3 bucket within AWS has generated an alert by violating the Prisma Cloud Default policy “AWS S3 buckets are accessible to public”. The policy definition follows: config where cloud.type = 'aws' AND api.name='aws-s3api-get-bucket-acl' AND json.rule="((((acl.grants[? (@.grantee=='AllUsers')] size > 0) or policyStatus.isPublic is true) and publicAccessBlockConfiguration does not exist) or...

Given the following RQL: event from cloud.audit_logs where operation IN (‘CreateCryptoKey’, ‘DestroyCryptoKeyVersion’, ‘v1.compute.disks.createSnapshot’) Which audit event snippet is identified? A) B) C) D) A . Option AB . Option BC . Option CD . Option DView AnswerAnswer: A Explanation: Reference: https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-rql-reference/rql-reference/event-query/event-query-attributes.html#id192IG500ES0

Console is running in a Kubernetes cluster, and you need to deploy Defenders on nodes within this cluster. Which option shows the steps to deploy the Defenders in Kubernetes using the default Console service name?A . From the deployment page in Console, choose pod name for Console identifier, generate DaemonSet...

DRAG DROP An administrator has been tasked with creating a custom service that will download any existing compliance report from a Prisma Cloud Enterprise tenant. In which order will the APIs be executed for this service?(Drag the steps into the correct order of occurrence, from the first step to the...

The security team wants to target a CNAF policy for specific running Containers . How should the administrator scope the policy to target the Containers?A . scope the policy to Image names.B . scope the policy to namespaces.C . scope the policy to Defender names.D . scope the policy to...

A manager informs the SOC that one or more RDS instances have been compromised and the SOC needs to make sure production RDS instances are NOT publicly accessible. Which action should the SOC take to follow security best practices?A . Enable “AWS S3 bucket is publicly accessible” policy and manually...

Which component(s), if any, will Palo Alto Networks host and run when a customer purchases Prisma Cloud Enterprise Edition?A . DefendersB . ConsoleC . JenkinsD . twistcliView AnswerAnswer: B