Free Palo Alto Networks PCCSE Exam Dumps and PCCSE Exam Questions

Question No: 11

MultipleChoice

A customer finds that an open alert from the previous day has been resolved No auto-remediation was configured Which two reasons explain this change in alert status? (Choose two )

Options

Aalert was sent to an external integration

Bresource was deleted.

Cuser manually changed the alert status

Dpolicy was changed.

Question No: 12

MultipleChoice

The administrator wants to review the Console audit logs from within the Console Which page in the Console should the administrator use to review this data, if it can be reviewed at all?

Options

AThe audit logs can be viewed only externally to the Console

BNavigate to Monitor > Events > Host Log Inspection

CNavigate to Manage > View Logs > History

DNavigate to Manage > Defenders > View Logs

Question No: 13

MultipleChoice

A customer has Prisma Cloud Enterprise and host Defenders deployed

What are two options that allow an administrator to upgrade Defenders'? (Choose two )

Options

Agenerate a new DaemonSet file

Bauto deploy the Lambda Defender

Cclick the update button in the web-interface

Dwith auto-upgrade, the host Defender will auto-upgrade.

Question No: 14

MultipleChoice

The development team wants to block Cross Site Scripting attacks from pods its environment

How should the team construct the CNAF policy to protect against this attack?

Options

Acreate a Container CNAF policy, targeted at a specific resource, check the box for XSS attack protection and set the action to alert

Bcreate a Host CNAF policy targeted at a specific resource, check the box for XSS attack protection and set the action to 'prevent'

Ccreate a Container CNAF policy, targeted at a specific resource, check the box for XSS attack protection and set the action to prevent

Dcreate a Container CNAF policy, targeted at a specific resource, and they should set 'Explicitly allowed inbound IP sources' to the IP address of the pod.

Question No: 15

MultipleChoice

The security team wants to target a CMAF policy for specific running Containers How should the administrator scope the policy to target the Containers?

Options

Ascope the policy to Image names

Bscope the policy to namespaces

Cscope the policy to Defender names.

Dscope the policy to Host names

Question No: 16

MultipleChoice

Given this information:

The password is: password123

The image to scan is: myimage:latest

Which twistcli command should be used to scan a Container for vulnerabilities and display the details about each vulnerability?

Options

Atwistcli images scan --console-address https://prisma-console.mydomain.local -u cluster -p password123 -- details myimage:latest

Btwistcli images scan --console-address prisma-console.mydomain.local -u cluster -p password123 -- vulnerability-details myimage:latest

Ctwistcli images scan --address prisma-console.mydomain.local -u cluster -p password123 --vulnerability- details myimage:latest

Dtwistcli images scan --address https://prisma-console.mydomain.local -u cluster -p password123 --details myimage:latest

Question No: 17

MultipleChoice

Review this admission control policy:

Which response to this policy will be achieved when the effect is set to "block"?

Options

AThe policy will replace Defender with a privileged Defender

BThe policy will block the creation of a privileged pod

CThe policy will block all pods on a Privileged host

DThe policy will alert only the administrator when a privileged pod is created

Question No: 18

MultipleChoice

What are two ways to scan container images in Jenkins pipelines? (Choose two )

Options

ACompute Jenkins plugin

BJenkins Docker plugin

CCompute Azure DevOps plugin

DPrisma Cloud Visual Studio Code plugin with Jenkins integration

Etwistcli

Question No: 19

MultipleChoice

The security team wants to protect a web application container from an SQLi attack? Which type of policy should the administrator create to protect the container?

Options

ACompliance

BRuntime

CCNAF

DCNNF

Question No: 20

MultipleChoice

An administrator sees that a runtime audit has been generated for a Container The audit message is DNS resolution of suspicious name wikipedia.com. type A".

Why would this message appear as an audit?

Options

AThe Layer7 firewall detected this as anomalous behavior

BThis is a DNS known to be a source of malware

CThe process calling out to this domain was not part of the Container model.

DThe DNS was not learned as part of the Container model or added to the DNS allow list

Free Palo Alto Networks Prisma Certified Cloud Security Engineer Exam Dumps