Palo Alto Networks Exam PCCSE Topic 1 Question 63 Discussion

Actual exam question for Palo Alto Networks's PCCSE exam

Question #: 63
Topic #: 1

The security team wants to target a CNAF policy for specific running Containers. How should the administrator scope the policy to target the Containers?

Ascope the policy to Image names.

Bscope the policy to namespaces.

Cscope the policy to Defender names.

Dscope the policy to Host names.

Show Suggested Answer

Suggested Answer: B, C

by Joesph at Aug 31, 2023, 05:40 PM

Limited Time Offer

25%

Off

Get Premium PCCSE Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Laura

3 days ago

Defender names? Really? That's like trying to herd cats. Namespaces all the way, baby!

upvoted 0 times

...

Theron

4 days ago

I'm gonna go with option B. Namespaces just make the most sense for this use case. Anything else would be like using a sledgehammer to crack a nut.

upvoted 0 times

...

Kanisha

13 days ago

But targeting Image names would ensure specific running Containers are covered, don't you think?

upvoted 0 times

...

Eliseo

17 days ago

I disagree, I believe scoping the policy to namespaces would be more effective.

upvoted 0 times

...

Rosendo

19 days ago

Hmm, I think scoping the policy to namespaces would be the way to go. That's the most logical approach to target specific running containers.

upvoted 0 times

...

Kanisha

19 days ago

I think the administrator should scope the policy to Image names.

upvoted 0 times

...