Free Palo Alto Networks PCCSE Exam Dumps and PCCSE Exam Questions

Question No: 21

MultipleChoice

A S3 bucket within AWS has generated an alert by violating the Prisma Cloud Default policy "AWS S3 buckets are accessible to public" The policy definition follows:

config where cloud type = 'aws' AND api name='aws-s3api-get-bucket-acr AND json.rule="((((acl grants{?(@ grantee='AllUsers')] size > 0) or policyStatusisPubiic is true) and publicAccessBlockConfiguration does not exist) or ((ad.grantsp(@ grantee=='AII Users')] size > 0) and publicAccessBlockConfiguration ignorePubhcAds is false) or (policyStatus isPublic is true and publicAccessBlockConfiguration.restrictPublicBuckets is false)) and websiteConfiguration does not exist" Why did this alert get generated?

Options

Aanomalous behaviors

Bnetwork traffic to the S3 bucket

Cconfiguration of the S3 bucket

Dan event within the cloud account

Question No: 22

MultipleChoice

Which three types of bucket exposure are available in the Data Security module? (Choose three.)

Options

ADifferential

BPublic

CConditional

DPrivate

EInternational

Question No: 23

MultipleChoice

Which "kind" of Kubernetes object that is configured to ensure that Defender is acting as the admission controller?

Options

APodSecurityPolicies

BDestinationRules

CValidatingWebhookConfiguration

DMutatingWebhookConfiguration

Question No: 24

MultipleChoice

Which component(s), if any will Palo Alto Networks host and run when a customer purchases Prisma Cloud Enterprise Edition?

Options

ADefenders

Btwistcli

CConsole

DJenkins

Question No: 25

MultipleChoice

A customer has a requirement to scan serverless functions for vulnerabilities. Which three settings are required to configure serverless scanning? (Choose three )

Options

ADefender Name

BCredential

CProvider

DConsole Address

ERegion

Question No: 26

MultipleChoice

Which authentication mechanism is supported by Prisma Cloud?

Options

ACertificate-based authentication for the Console Ul and the API

BCertificate-based authentication only for the API

CCertificate-based authentication only for the Console Ul

DSAML-based authentication for the API

Question No: 27

DragDrop

An administrator needs to write a script that automatically deactivates access keys that have not been used for 30 days In which order should the API calls be used to accomplish this task? (Drag the steps into the correct order from the first step to the last.)

Question No: 28

MultipleChoice

An organization wants to be notified immediately to any "High Seventy" alerts for the account group "Clinical Trials" via Slack Which option shows the steps should the organization can use to achieve this goal?

Options

A1 Configure Slack Integration
2. Create an alert rule
3. Under the 'Select Policies' tab, filter on seventy and select 'High'
4. Under the Set Alert Notification tab- choose Slack and populate the channel
5. Set Frequency to 'As it Happens'

B1. Configure Slack Integration
2 Create an alert rule and select 'Clinical Trials' as the account group
3. Under the 'Select Policies' tab filter on seventy and select 'High'
4. Under the Set Alert Notification tab choose Slack and populate the channel
5. Set Frequency to 'As it Happens'

C1. Create an alert rule and select 'Clinical Trials' as the account group
2. Under the 'Select Policies' tab filter on seventy and select 'High'
3. Under the Set Alert Notification tab choose Slack and populate the channel
4. Set Frequency to 'As it Happens'
5. Set up the Slack Integration to complete the configuration

D1. Under the 'Select Policies' tab filter on seventy and select 'High'
2. Under the Set Alert Notification tab choose Slack and populate the
3. Set Frequency to 'As it Happens'
4. Configure Slack Integration
5. Create an Alert rule

Question No: 29

MultipleChoice

Review this admission control policy:

match[{'msg': msg}] { input.request.operation == 'CREATE' input.request.kind.kind == 'Pod' input.request.resource.resource == 'pods'

input.request.object.spec.containers[_].securityContext.privileged msg := 'Privileged'

}

Which response to this policy will be achieved when the effect is set to ''block''?

Options

AThe policy will block all pods on a Privileged host.

BThe policy will replace Defender with a privileged Defender.

CThe policy will alert only the administrator when a privileged pod is created.

DThe policy will block the creation of a privileged pod.

Question No: 30

MultipleChoice

Given this information:

The Console is located at https://prisma-console.mydomain.local The username is: cluster

The password is: password123

The image to scan is: myimage:latest

Which twistcli command should be used to scan a Container for vulnerabilities and display the details about each vulnerability?

Options

Atwistcli images scan --console-address https://prisma-console.mydomain.local -u cluster -p password123 -- details myimage:latest

Btwistcli images scan --console-address prisma-console.mydomain.local -u cluster -p password123 -- vulnerability-details myimage:latest

Ctwistcli images scan --address prisma-console.mydomain.local -u cluster -p password123 --vulnerability- details myimage:latest

Dtwistcli images scan --address https://prisma-console.mydomain.local -u cluster -p password123 --details myimage:latest

Free Palo Alto Networks Prisma Certified Cloud Security Engineer Exam Dumps