Palo Alto Networks PCCSE Practice Verified Answers - Pass Your Exams For Sure! [2021]
Valid Way To Pass Cloud Security Engineer's PCCSE Exam
NEW QUESTION 30
You are an existing customer of Prisma Cloud Enterprise. You want to onboard a public cloud account and immediately see all of the alerts associated with this account based off ALL of your tenant's existing enabled policies. There is no requirement to send alerts from this account to a downstream application at this time.
Which option shows the steps required during the alert rule creation process to achieve this objective?
- A. Ensure the public cloud account is assigned to an account group Assign the confirmed account group to alert rule Select one or more policies checkbox as part of the alert rule Confirm the alert rule
- B. Ensure the public cloud account is assigned to an account group Assign the confirmed account group to alert rule Select "select all policies" checkbox as part of the alert rule Confirm the alert rule
- C. Ensure the public cloud account is assigned to an account group Assign the confirmed account group to alert rule Select one or more policies as part of the alert rule Add alert notifications Confirm the alert rule
- D. Ensure the public cloud account is assigned to an account group Assign the confirmed account group to alert rule Select "select all policies" checkbox as part of the alert rule Add alert notifications Confirm the alert rule
Answer: C
NEW QUESTION 31
Which statement is true regarding CloudFormation templates?
- A. Scan support does not currently exist tor nested references, macros, or intrinsic functions.
- B. A single template or a zip archive of template files cannot be scanned with a single API request.
- C. Request-Header-Field 'cloudformation-version' is required to request a scan.
- D. Scan support is provided for JSON. HTML and YAML formats.
Answer: A
NEW QUESTION 32
A customer has a requirement to automatically protect all Lambda functions with runtime protection. What is the process to automatically protect all the Lambda functions?
- A. Configure a manually embedded Lambda Defender.
- B. Configure a function scan policy from the Defend/Vulnerabilities/Functions page.
- C. Configure serverless radar from the Defend/Compliance/Cloud Platforms page.
- D. Configure a serverless auto-protect rule for the functions.
Answer: D
NEW QUESTION 33
A customer has Defenders connected to Prisma Cloud Enterprise. The Defenders are deployed as a DaemonSet in OpenShift.
How should the administrator get a report of vulnerabilities on hosts?
- A. Navigate to Monitor > Vulnerabilities > CVE Viewer
- B. Navigate to Defend > Vulnerabilities > Hosts
- C. Navigate to Defend > Vulnerabilities > VM Images
- D. Navigate to Monitor > Vulnerabilities > Hosts
Answer: D
NEW QUESTION 34
A customer has a requirement to automatically protect all Lambda functions with runtime protection. What is the process to automatically protect all the Lambda functions?
- A. Configure serveriess radar from the Defend/Compliance/Cloud Platforms page
- B. Configure a manually embedded Lambda Defender.
- C. Configure a function scan policy from the Defend/Vulnerabilities/Functions page
- D. Configure a serveriess auto-protect rule for the functions.
Answer: A
NEW QUESTION 35
Which type of compliance check is available for rules under Defend > Compliance > Containers and Images
> CI?
- A. Container
- B. Host
- C. Image
- D. Functions
Answer: B
NEW QUESTION 36
Which statement is true about obtaining Console images for Prisma Cloud Compute Edition?
- A. To retrieve Prisma Cloud Console images using basic auth:
1. Access registry.paloaltonetworks.com, and authenticate using 'docker login'.
2. Retrieve the Prisma Cloud Console images using 'docker pull'. - B. To retrieve Prisma Cloud Console images using URL auth:
1. Access registry-auth.twistlock.com, and authenticate using the user certificate.
2. Retrieve the Prisma Cloud Console images using 'docker pull'. - C. To retrieve Prisma Cloud Console images using URL auth:
1. Access registry-url-auth.twistlock.com, and authenticate using the user certificate.
2. Retrieve the Prisma Cloud Console images using 'docker pull'. - D. To retrieve Prisma Cloud Console images using basic auth:
1. Access registry.twistlock.com, and authenticate using 'docker login'.
2. Retrieve the Prisma Cloud Console images using 'docker pull'.
Answer: D
Explanation:
Section: (none)
Explanation
NEW QUESTION 37
A customer wants to harden its environment from misconfiguration.
Prisma Cloud Compute Compliance enforcement for hosts covers which three options? (Choose three.)
- A. Hosts without Defender agents
- B. Host cloud provider tags
- C. Docker daemon configuration files
- D. Docker daemon configuration
- E. Host configuration
Answer: B,D,E
NEW QUESTION 38
Given an existing ECS Cluster, which option shows the steps required to install the Console in Amazon ECS?
- A. Download and extract the release tarball
Ensure that each node has it own storage for Console data
Create the Console task definition
Deploy the task definition - B. Download and extract release tarball
Download task from AWS
Create the Console task definition
Deploy the task definition - C. Download and extract the release tarball
Create an EPS file system and mount to each node in the cluster
Create the Console task definition
Deploy the task definition - D. The console cannot natively run in an ECS cluster.
A onebox deployment should be used.
Answer: B
NEW QUESTION 39
You have onboarded a public cloud account into Prisma Cloud Enterprise Configuration Resource ingestion is visible in the Asset Inventory for the onboarded account, but no alerts are being generated for the configuration assets in the account Config policies are enabled in the Prisma Cloud Enterprise tenant, with those policies associated to existing alert rules RQL statements on the Investigate matching those policies return config resource results successfully Why are no alerts being generated''
- A. The public cloud account does not have audit trail ingestion enabled.
- B. The public cloud account is not associated with an alert notification.
- C. The public cloud account is not associated with an alert rule
- D. The public cloud account does not have access to configuration resources.
Answer: B
NEW QUESTION 40
Order the steps involved in onboarding an AWS Account for use with Data Security feature.
Answer:
Explanation:
NEW QUESTION 41
An organization wants to be notified immediately to any "High Severity" alerts for the account group "Clinical Trials" via Slack.
Which option shows the steps the organization can use to achieve this goal?
- A. 1. Create an alert rule and select "Clinical Trials" as the account group
2. Under the "Select Policies" tab, filter on severity and select "High"
3. Under the Set Alert Notification tab, choose Slack and populate the channel
4. Set Frequency to "As it Happens"
5. Set up the Slack Integration to complete the configuration - B. 1. Configure Slack Integration
2. Create an alert rule
3. Under the "Select Policies" tab, filter on severity and select "High"
4. Under the Set Alert Notification tab, choose Slack and populate the channel
5. Set Frequency to "As it Happens" - C. 1. Under the "Select Policies" tab, filter on severity and select "High"
2. Under the Set Alert Notification tab, choose Slack and populate the channel
3. Set Frequency to "As it Happens"
4. Configure Slack Integration
5. Create an Alert rule - D. 1. Configure Slack Integration
2. Create an alert rule and select "Clinical Trials" as the account group
3. Under the "Select Policies" tab, filter on severity and select "High"
4. Under the Set Alert Notification tab, choose Slack and populate the channel
5. Set Frequency to "As it Happens"
Answer: A
NEW QUESTION 42
Which option shows the steps to install the Console in a Kubernetes Cluster?
- A. Download and extract release tarball Download the YAML for Console Deploy Console YAML using kubectl
- B. Download the Console and Defender image Generate YAML for Defender
Deploy Defender YAML using kubectl - C. Download the Console and Defender image Download YAML for Defender from the document site Deploy Defender YAML using kubectl
- D. Download and extract release tarball Generate YAML for Console
Deploy Console YAML using kubectl
Answer: D
NEW QUESTION 43
Which intensity setting for anomaly alerts is used for the measurement of 100 events over 30 days?
- A. High
- B. Very High
- C. Medium
- D. Low
Answer: A
NEW QUESTION 44
An administrator sees that a runtime audit has been generated for a host.
The audit message is:
'Service postfix attempted to obtain capability SHELL by executing /bin/sh /usr/libexec/postfix/postfix-script stop. Low severity audit event is automatically added to the runtime mode'' Which runtime host policy rule is the root cause for this runtime audit?
- A. Custom rule with specific configuration for networking
- B. Custom rule with specific configuration for file integrity
- C. Default rule that alerts on capabilities
- D. Default rule that alerts on suspicious runtime behavior
Answer: D
NEW QUESTION 45
Match the correct scanning mode for each given operation.
(Select your answer from the pull-down list. Answers may be used more than once or not at all.)
Answer:
Explanation:
NEW QUESTION 46
Which "kind" of Kubernetes object is configured to ensure that Defender is acting as the admission controller?
- A. DestinationRules
- B. ValidatingWebhookConfiguration
- C. MutatingWebhookConfiguration
- D. PodSecurityPolicies
Answer: B
NEW QUESTION 47
Which statement is true about obtaining Console images for Prisma Cloud Compute Edition'?
To retrieve Prisma Cloud Console images using URL auth;
- A. 1 Access registry paloaltonetworks com. and authenticate using 'docker login'
2 Retrieve the Prisma Cloud Console images using 'docker pull' - B. 1 Access registry-urt-auth twistlock com, and authenticate using the user certificate
2. Retrieve the Prisma Cloud Console images using 'docker pull'
To retrieve Prisma Cloud Console images using basic auth: - C. 1 Access registry-auth.twistlock com and authenticate using the user certificate
2. Retrieve the Prisma Cloud Console images using 'docker pull'
To retrieve Prisma Cloud Console images using basic auth - D. 1. Access registry twistlock com. and authenticate using 'docker login'
2 Retrieve the Prisma Cloud Console images using "docker pull'
To retrieve Prisma Cloud Console images using URL auth
Answer: C
NEW QUESTION 48
Which statement accurately characterizes SSO Integration on Prisma Cloud?
- A. Okta, Azure Active Directory. PingID, and others are supported via SAML
- B. An administrator can configure different Identity Providers (IdP) for all the cloud accounts that Prisma Cloud monitors.
- C. An administrator who needs to access the Prisma Cloud API can use SSO after configuration.
- D. Prisma Cloud supports IdP initiated SSO. and its SAML endpoint supports the POST and GET methods
Answer: A
NEW QUESTION 49
A customer wants to be notified about port scanning network activities in their environment Which policy type detects this behavior?
- A. Anomaly
- B. Config
- C. Network
- D. Port Scan
Answer: A
NEW QUESTION 50
What is the order of steps to create a custom network policy?
(Drag the steps into the correct order of occurrence, from the first step to the last.)
Answer:
Explanation:
NEW QUESTION 51
A Prisma Cloud administrator is tasked with pulling a report via API. The Prisma Cloud tenant is located on app2.prismacloud.io.
What is the correct API endpoint?
- A. https://api2.prismacloud.io
- B. https://api.prismacloud.io
- C. https://api2.eu.prismacloud.io
- D. httsp://api.prismacloud.cn
Answer: B
NEW QUESTION 52
What are two ways to scan container images in Jenkins pipelines? (Choose two.)
- A. twistcli
- B. Compute Jenkins plugin
- C. Compute Azure DevOps plugin
- D. Prisma Cloud Visual Studio Code plugin with Jenkins integration
- E. Jenkins Docker plugin
Answer: D,E
NEW QUESTION 53
What is the order of steps to create a custom network policy?
(Drag the steps into the correct order of occurrence, from the first step to the last.)
Answer:
Explanation:
Reference:
https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-admin/prisma-cloud-policies/create-a- policy.html
NEW QUESTION 54
......
Palo Alto Networks PCCSE Pre-Exam Practice Tests | TorrentValid: https://www.torrentvalid.com/PCCSE-valid-braindumps-torrent.html
PCCSE practice test questions, answers, explanations: https://drive.google.com/open?id=1ABPG4LnanW63KXcUG6NaZLpw7sBfGNDO