Netskope Exam NSK300 Topic 6 Question 18 Discussion

Actual exam question for Netskope's NSK300 exam

Question #: 18
Topic #: 6

You deployed Netskope Cloud Security Posture Management (CSPM) using pre-defined benchmark rules to monitor your cloud posture in AWS, Azure, and GCP. You are asked to assess if you can extend the Netskope CSPM solution by creating custom rules for each environment.

Which statement is correct?

ACustom rules using Domain Specific Language are only available when using SSPM.

BYou will need to evaluate SaaS Security Posture Management (SSPM) in addition to CSPM so that rules applied to GCP will align with Google Workspace

CWith Netskope CSPM, you can create custom rules using Domain Specific Language for AWS. Azure, but not for GCP.

DWith Netskope CSPM, you can create custom rules using Domain Specific Language for AWS. Azure, and GCP

Show Suggested Answer

Suggested Answer: A

The issue is likely caused by a missing group name in the SAML response (A). When access to Microsoft 365 from unmanaged devices is not blocked as expected, despite having a policy in place, it often indicates that the SAML assertion is not correctly identifying the user as a member of the restricted group. In this case, the ''marketing-users'' group name should be present in the SAML response to enforce the policy that blocks login activity for this group. If the group name is missing, the policy will not apply, and users will not be blocked as intended.

by Kristofer at Sep 19, 2024, 04:07 AM

Limited Time Offer

25%

16 days ago

I think the answer is D.

upvoted 0 times

...