MoreExam
1. Question Content...
EXPLANATION
Answer: X - EXPLANATION Content.
Question1: A customer has Prisma Cloud Enterprise and host Defenders deployedWhat are two options that allow an administrator to upgrade Defenders'? (Choose two )
Question2: Which three types of bucket exposure are available in the Data Security module? (Choose three.)
Question3: A customer wants to be notified about port scanning network activities in their environment Which policy type detects this behavior?
Question4: Which authentication mechanism is supported by Prisma Cloud?
Question5: An administrator sees that a runtime audit has been generated for a host.The audit message is:'Service postfix attempted to obtain capability SHELL by executing /bin/sh /usr/libexec/postfix/postfix-script stop. Low severity audit event is automatically added to the runtime mode'' Which runtime host policy rule is the root cause for this runtime audit?
Question6: What is the behavior of Defenders when the Console is unreachable during upgrades?
Question7: Per security requirements, an administrator needs to provide a list of people who are receiving e-mails for Prisma Cloud alerts Where can the administrator locate this list of e-mail recipients'?
Question8: A customer has a requirement to automatically protect all Lambda functions with runtime protection. What is the process to automatically protect all the Lambda functions?
Question9: Which type of compliance check is available for rules under Defend > Compliance > Containers and Images> CI?
Question10: Which "kind" of Kubernetes object that is configured to ensure that Defender is acting as the admission controller?
Question11: An administrator has access to a Prisma Cloud EnterpriseWhat are the steps to deploy a single container Defender on an ec2 node?
Question12: The InfoSec team wants to be notified via email each time a Security Group is misconfigured Which Prisma Cloud tab should you choose to complete this request?
Question13: A customer is deploying Defenders to a Fargate environment It wants to understand the vulnerabilities in the images it is deploying. How should the customer automate vulnerability scanning for images deployed to Fargate?
Question14: A customer is interested in PCI requirements and needs to ensure that no privilege containers can start in the environment. Which action needs to be set for "do not use privileged containers?
Question15: You have onboarded a public cloud account into Prisma Cloud Enterprise Configuration Resource ingestion is visible in the Asset Inventory for the onboarded account, but no alerts are being generated for the configuration assets in the account Config policies are enabled in the Prisma Cloud Enterprise tenant, with those policies associated to existing alert rules RQL statements on the Investigate matching those policies return config resource results successfully Why are no alerts being generated''
Question16: A customer does not want alerts to be generated from network traffic that originates from trusted internal networks. Which setting should you use to meet this customer's request?
Question17: A business unit has acquired a company that has a very large AWS account footprint The plan is to immediately start onboarding the new company's AWS accounts into Prisma Cloud Enterprise tenant immediately The current company is currently not using AWS Organizations and will require each account to be onboarded individually The business unit has decided to cover the scope of this action and determined that a script should be written to onboard each of these accounts with general settings to gam immediate posture visibility across the accounts.Which API endpoint will specifically add these accounts into the Prisma Cloud Enterprise tenant?
Question18: An administrator needs to write a script that automatically deactivates access keys that have not been used for30 days In which order should the API calls be used to accomplish this task? (Drag the steps into the correct order from the first step to the last.)
Question19: A DevOps lead reviewed some system logs and notices some odd behavior that could be a data exfiltration attempt The DevOps lead only has access to vulnerability data in Prisma Cloud Compute, so the DevOps lead passes this information to SecOps Which pages in Prisma Cloud Compute can the SecOps lead use to investigate the runtime aspects of this attack?
Question20: An administrator wants to install the Defenders to a Kubernetes cluster. This cluster is running the console on the default service endpoint and will be exporting to YAML Console Address SCONSOLE_ADDRESS Websocket Address SWEBSOCKHT_ADDRESS User: SADMIN USER Which command generates the YAML file for Defender install?A)B)C)D)
Question21: A customer has Defenders connected to Prisma Cloud Enterprise The Defenders are deployed as a DaemonSet in OpenShift. How should the administrator get a report of vulnerabilities on hosts'?
Question22: Which three Options are selectable in a CI policy for image scanning with Jenkins or twistcli? (Choose three.)
Question23: Which container image scan is constructed correctly?
Question24: A security team notices a number of anomalies under Monitor > Events The incident response team works with the developers to determine that these anomalies are false positives.What will be the effect if the security team chooses to Relearn on this image?
Question25: A Prisma Cloud administrator is onboarding a single GCP project to Prisma Cloud. Which two steps can be performed by the Terraform script? (Choose two.)
Question26: Which two statements are true about the differences between build and run config policies? (Choose two.)
Question27: Which three types of classifications are available in the Data Security module? (Choose three. )
Question28: The administrator wants to review the Console audit logs from within the Console Which page in the Console should the administrator use to review this data, if it can be reviewed at all?
Question29: The development team wants to fail CI jobs where a specific CVE is contained within the image. How should the development team configure the pipeline or policy to produce this outcome?
Question30: A Prisma Cloud administrator is tasked with pulling a report via API The Prisma Cloud tenant is located on app2.pnsmacfoudjo. What is the correct API endpoint?