Which two templates are supported by Cloud Code Security scan service? (Choose two.)
AAzure Resource Manager (ARM)
BHyper Text Markup Language (HTML)
CGitHub
DTerraform
Where can rules be configured and viewed to configure trusted images?
AMonitor > Compliance > Trusted Images
BMonitor > Compliance > Images
CDefend > Compliance > Trusted Images
DDefend > Compliance > Images
Which framework in Prisma Cloud can be used to provide general best practices when no specific legal requirements or regulatory standards need to be met?
APayment Card Industry (PCI) Data Security Standard (DSS) V3
BHealth Insurance Portability and Accountability Act (HIPAA)
CCenter for Internet Security (CIS) Benchmark
DGeneral Data Protection Regulation (GDPR)
What is a permanent public IP called on Amazon Web Services (AWS)?
Afloating IP
BPublic IP (PIP)
Creserved IP
DElastic IP (EIP)
Question 6
Compute
0
Question 7
Monitoring of Public Cloud
Question 8
Onboarding and Initial Setup
Question 9
Onboarding and Initial Setup
Question 10
Generating Reports
Question 11
Troubleshooting and Support
Question 12
Onboarding and Initial Setup
Question 13
Monitoring of Public Cloud
Question 14
Compute
Question 15
Monitoring of Public Cloud
Question 16
Remediating Security Issues
Question 17
Investigating Security Issues with RQL
Question 18
Investigating Security Issues with RQL
Question 19
Compute
Question 20
PSE Prisma Cloud Associate
Question 21
Monitoring of Public Cloud
Question 22
Generating Reports
Question 23
Remediating Security Issues
Question 24
Troubleshooting and Support
Question 25
Investigating Security Issues with RQL
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ad
Want a break from the ads?
Become a Supporter and enjoy a completely ad-free experience, plus unlock Learn Mode, Exam Mode, AstroTutor AI, and more.
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
Ask AstroTutor
0
In which two ways can Prisma Cloud Compute (PCC) edition be installed? (Choose two.)
Aself-managed in a customer's own container platform
Bself-contained hardware appliance
Cas a stand-alone Windows application
DCloud-hosted as part of a Prisma Cloud Enterprise tenant from Palo Alto Networks
Which pillar of the Prisma Cloud platform provides support for both public and private clouds as well as flexible agentless scanning and agent-based protection?
ACloud Network Security
BCloud Security Posture Management
CCloud Identity Security
DCloud Workload Protection (CWP)
Which two valid effects are used to deal with images within a rule for trusted images? (Choose two.)
ADeny
BAlert
CBlock
DIgnore
What is the creation and change of public cloud services managed in a repeatable and predictable fashion?
Ainfrastructure as code (IaC)
Binfrastructure as a service (IaaS)
Cplatform as a service (PaaS)
Dsoftware as code
What are the asset severity levels within Prisma Cloud asset inventory?
ALow, Medium, and High
BLow, Medium, High, and Critical
CInformational, Low, Medium, and High
DLow, Medium, High, Severe, and Critical
Which filter type is valid in Asset Explorer?
Aresource name
Binstance
Ccloud region
Dfeature
What does Infrastructure as Code (IaC) collect to enable automation?
Amodern representation formats that describe and deploy infrastructure
Borchestrated workflows to enable cross-functional teams to deploy infrastructure
Cimages to easily replicate and manage infrastructure
Dinfrastructure monitoring tool sets
Which regulatory framework in Prisma Cloud measures compliance with European Union (EU) data privacy regulations in Amazon Web Services (AWS) workloads?
AGeneral Data Protection Regulation (GDPR)
BInternational Organization for Standardization (ISO) 27001
CPayment Card Industry (PCI) Data Security Standard (DSS) 3.0
DEU Data Protection Directive 95/46/EC
What subcommand invokes the Prisma Cloud Compute (PCC) edition image scanner?
A
twistcli images scan
B
twistcli project scan
C
twistcli scan projects
D
twistcli scan images
Which statement applies to optimization of registry scans with version pattern matching?
AIt requires Linux images to rely on optimizing registry scans due to various Linux elements.
BIt is only necessary in registries with tens of thousands of repositories and millions of images.
CIt is best practice to always optimize registry scans for faster results.
DIt is rarely successful in the Windows Operating System (OS).
Which type of Prisma Cloud Enterprise alert supports autoremediation?
Anetwork
Baudit
Canomaly
Dconfig
Which Resource Query Language (RQL) query type monitors specific administrator activities?
AEvent
BNetwork
CUser
DConfig
Which Resource Query Language (RQL) string using network query attributes returns all traffic destined for Internet or Suspicious IPs, what also exceed 1GB?
Anetwork from vpc.flow_record where publicnetwork = ( 'Internet IPs', 'Suspicious IPs' ) AND bytes > 1000000000
Bnetwork from vpc.flow_record where bytes > 1GB and destination = 'Internet IPs' OR 'Suspicious IPs'
Cshow traffic from vpc.flow_record where destination.network = ( 'Internet IPs', 'Suspicious IPs' ) AND bytes > 1000000000
Dnetwork from vpc.flow_record where dest.publicnetwork IN ( 'Internet IPs', 'Suspicious IPs' ) AND bytes > 1000000000
Which two deployment methods are supported for Prisma Cloud Compute (PCC) container Defenders? (Choose two.)
AAzure SQL database instances
BGoogle Kubernetes Engine
COracle Functions service
DKubernetes DaemonSet
Which two template formats are supported by the Prisma Cloud infrastructure as code (IaC) scan service? (Choose two.)
AARMB. XMLC. YAML
DJSON
What is the Palo Alto Networks default Prisma Cloud setting for Alert Disposition to reduce the number of false positives?
AConservative
BModerate
CHigh
DAggressive
Which two resources provide operational insight within the Prisma Cloud Asset Inventory? (Choose two.)
ACortex Data Lake
BCloud Storage buckets
CPrisma Access Gateways
DCompute Engine instance
Which statement applies to vulnerability management policies?
AHost and serverless rules support blocking, whereas container rules do not.
BRules explain the necessary actions when vulnerabilities are found in the resources of a customer environment.
CPolicies for containers, hosts, and serverless functions are not separate.
DRules are evaluated in an undefined order.
The following error is received when performing a manual twistcli scan on an image: sudo ./twistcli images scan -u bca208cf-26fa-43c6-ac6S-edbl840f8a5S -p 69s+DUqceuxndIF52mo4JDHlpLA-proxy:1.0
What is missing from the command?
Aregistry path for image name
Bpassword
Cconsole address
Dusername
Which RQL query returns a list of all Azure virtual machines that are not currently running?
Aconfig from cloud.resource where api.name = 'azure-vm-list' AND json.rule = powerState contains "running"
Bconfig from cloud.resource where api.name = 'azure-vm-list' AND json.rule = powerState = "running"
Cconfig from cloud.resource where api.name = 'azure-vm-list* AND json.rule = powerState = "off"
Dconfig from cloud.resource where api.name = 'azure-vm-list' AND json.rule = powerState does not contain "running"
