• Home
  • Blogs
  • 2021 PCCSE Premium Files Test pdf - Free Dumps Collection [Q11-Q36]

2021 PCCSE Premium Files Test pdf - Free Dumps Collection [Q11-Q36]

Share

2021 PCCSE Premium Files Test pdf - Free Dumps Collection

 Get ready to pass the PCCSE Exam right now using our Cloud Security Engineer  Exam Package

NEW QUESTION 11
Which authentication mechanism is supported by Prisma Cloud?

  • A. Certificate-based authentication only for the Console Ul
  • B. Certificate-based authentication for the Console Ul and the API
  • C. Certificate-based authentication only for the API
  • D. SAML-based authentication for the API

Answer: B

 

NEW QUESTION 12
An administrator sees that a runtime audit has been generated for a Container. The audit message is "DNS resolution of suspicious name wikipedia.com. type A".
Why would this message appear as an audit?

  • A. This is a DNS known to be a source of malware.
  • B. The Layer7 firewall detected this as anomalous behavior.
  • C. The process calling out to this domain was not part of the Container model.
  • D. The DNS was not learned as part of the Container model or added to the DNS allow list.

Answer: D

 

NEW QUESTION 13
The Unusual protocol activity (Internal) network anomaly is generating too many alerts. An administrator has been asked to tune it to the option that will generate the least number of events without disabling it entirely.
Which strategy should the administrator use to achieve this goal?

  • A. Set Alert Disposition to Aggressive
  • B. Disable the policy
  • C. Set the Alert Disposition to Conservative
  • D. Change the Training Threshold to Low

Answer: D

Explanation:
Section: (none)
Explanation

 

NEW QUESTION 14
A customer has Defenders connected to Prisma Cloud Enterprise. The Defenders are deployed as a DaemonSet in OpenShift.
How should the administrator get a report of vulnerabilities on hosts?

  • A. Navigate to Monitor > Vulnerabilities > CVE Viewer
  • B. Navigate to Defend > Vulnerabilities > Hosts
  • C. Navigate to Defend > Vulnerabilities > VM Images
  • D. Navigate to Monitor > Vulnerabilities > Hosts

Answer: D

 

NEW QUESTION 15
Given a default deployment of Console, a customer needs to identify the alerted compliance checks that are set by default.
Where should the customer navigate in Console?

  • A. Monitor > Compliance
  • B. Manage > Compliance
  • C. Defend > Compliance
  • D. Custom > Compliance

Answer: C

 

NEW QUESTION 16
The compliance team needs to associate Prisma Cloud policies with compliance frameworks. Which option should the team select to perform this task?

  • A. Custom Compliance
  • B. Alert Rules
  • C. Compliance
  • D. Policies

Answer: C

 

NEW QUESTION 17
The security team wants to protect a web application container from an SQLi attack? Which type of policy should the administrator create to protect the container?

  • A. Compliance
  • B. CNAF
  • C. CNNF
  • D. Runtime

Answer: C

 

NEW QUESTION 18
A DevOps lead reviewed some system logs and notices some odd behavior that could be a data exfiltration attempt The DevOps lead only has access to vulnerability data in Prisma Cloud Compute, so the DevOps lead passes this information to SecOps Which pages in Prisma Cloud Compute can the SecOps lead use to investigate the runtime aspects of this attack?

  • A. The SecOps lead should use Incident Explorer and Compliance Explorer.
  • B. The SecOps lead should investigate the attack using Vulnerability Explorer and Runtime Radar
  • C. The SecOps lead should use the Incident Explorer page and Monitor > Events > Container Audits
  • D. The SecOps lead should review the vulnerability scans in the CI/CD process to determine blame

Answer: A

 

NEW QUESTION 19
Which three steps are involved in onboarding an account for Data Security? (Choose three.)

  • A. Create a Cloudtrail with SNS Topic
  • B. Create a S3 bucket
  • C. Enter the RoleARN and SNSARN
  • D. Enable Flow Logs
  • E. Create a read-only role with in-line policies

Answer: A,B,D

 

NEW QUESTION 20
Review this admission control policy:

Which response to this policy will be achieved when the effect is set to "block"?

  • A. The policy will block the creation of a privileged pod
  • B. The policy will replace Defender with a privileged Defender
  • C. The policy will block all pods on a Privileged host
  • D. The policy will alert only the administrator when a privileged pod is created

Answer: B

 

NEW QUESTION 21
An administrator has deployed Console into a Kubernetes cluster running in AWS. The administrator also has configured a load balancer in TCP passthrough mode to listen on the same ports as the default Prisma Compute Console configuration.
In the build pipeline, the administrator wants twistcli to talk to Console over HTTPS. Which port will twistcli need to use to access the Prisma Compute APIs?

  • A. 0
  • B. 1
  • C. 2
  • D. 3

Answer: C

 

NEW QUESTION 22
Order the steps involved in onboarding an AWS Account for use with Data Security feature.

Answer:

Explanation:

 

NEW QUESTION 23
Which three steps are involved in onboarding an account for Data Security? (Choose three.)

  • A. Create a Cloudtrail with SNS Topic
  • B. Create a read-only role with in-line policies
  • C. Create a S3 bucket
  • D. Enable Flow Logs
  • E. Enter the RoleARN and SNSARN

Answer: B,D,E

 

NEW QUESTION 24
Which statement is true regarding CloudFormation templates?

  • A. Scan support does not currently exist tor nested references, macros, or intrinsic functions.
  • B. A single template or a zip archive of template files cannot be scanned with a single API request.
  • C. Request-Header-Field 'cloudformation-version' is required to request a scan.
  • D. Scan support is provided for JSON. HTML and YAML formats.

Answer: A

 

NEW QUESTION 25
Which type of compliance check is available for rules under Defend > Compliance > Containers and Images
> CI?

  • A. Container
  • B. Host
  • C. Image
  • D. Functions

Answer: B

 

NEW QUESTION 26
The administrator wants to review the Console audit logs from within the Console Which page in the Console should the administrator use to review this data, if it can be reviewed at all?

  • A. Navigate to Manage > Defenders > View Logs
  • B. Navigate to Monitor > Events > Host Log Inspection
  • C. The audit logs can be viewed only externally to the Console
  • D. Navigate to Manage > View Logs > History

Answer: D

 

NEW QUESTION 27
Match the correct scanning mode for each given operation.
(Select your answer from the pull-down list. Answers may be used more than once or not at all.)

Answer:

Explanation:

 

NEW QUESTION 28
What are two ways to scan container images in Jenkins pipelines? (Choose two )

  • A. Compute Jenkins plugin
  • B. Compute Azure DevOps plugin
  • C. Prisma Cloud Visual Studio Code plugin with Jenkins integration
  • D. twistcli
  • E. Jenkins Docker plugin

Answer: C,D

 

NEW QUESTION 29
Which statement accurately characterizes SSO Integration on Prisma Cloud?

  • A. Okta, Azure Active Directory. PingID, and others are supported via SAML
  • B. An administrator can configure different Identity Providers (IdP) for all the cloud accounts that Prisma Cloud monitors.
  • C. An administrator who needs to access the Prisma Cloud API can use SSO after configuration.
  • D. Prisma Cloud supports IdP initiated SSO. and its SAML endpoint supports the POST and GET methods

Answer: A

 

NEW QUESTION 30
A customer wants to be notified about port scanning network activities in their environment Which policy type detects this behavior?

  • A. Anomaly
  • B. Config
  • C. Network
  • D. Port Scan

Answer: A

 

NEW QUESTION 31
Which order of steps map a policy to a custom compliance standard?
(Drag the steps into the correct order of occurrence, from the first step to the last.)

Answer:

Explanation:

 

NEW QUESTION 32
A customer wants to harden its environment from misconfiguration
Prisma Cloud Compute Compliance enforcement for hosts covers which three options? (Choose three.)

  • A. Docker daemon configuration files
  • B. Hosts without Defender agents
  • C. Host configuration
  • D. Host cloud provider tags
  • E. Docker daemon configuration

Answer: A,B,C

 

NEW QUESTION 33
Which statement is true about obtaining Console images for Prisma Cloud Compute Edition?

  • A. To retrieve Prisma Cloud Console images using basic auth:
    1. Access registry.paloaltonetworks.com, and authenticate using 'docker login'.
    2. Retrieve the Prisma Cloud Console images using 'docker pull'.
  • B. To retrieve Prisma Cloud Console images using URL auth:
    1. Access registry-auth.twistlock.com, and authenticate using the user certificate.
    2. Retrieve the Prisma Cloud Console images using 'docker pull'.
  • C. To retrieve Prisma Cloud Console images using URL auth:
    1. Access registry-url-auth.twistlock.com, and authenticate using the user certificate.
    2. Retrieve the Prisma Cloud Console images using 'docker pull'.
  • D. To retrieve Prisma Cloud Console images using basic auth:
    1. Access registry.twistlock.com, and authenticate using 'docker login'.
    2. Retrieve the Prisma Cloud Console images using 'docker pull'.

Answer: D

Explanation:
Section: (none)
Explanation

 

NEW QUESTION 34
Given an existing ECS Cluster, which option shows the steps required to install the Console in Amazon ECS?

  • A. Download and extract the release tarball
    Ensure that each node has it own storage for Console data
    Create the Console task definition
    Deploy the task definition
  • B. Download and extract release tarball
    Download task from AWS
    Create the Console task definition
    Deploy the task definition
  • C. Download and extract the release tarball
    Create an EPS file system and mount to each node in the cluster
    Create the Console task definition
    Deploy the task definition
  • D. The console cannot natively run in an ECS cluster.
    A onebox deployment should be used.

Answer: B

 

NEW QUESTION 35
An S3 bucket within AWS has generated an alert by violating the Prisma Cloud Default policy "AWS S3 buckets are accessible to public". The policy definition follows:
config where cloud.type = 'aws' AND api.name='aws-s3api-get-bucket-acl' AND json.rule="((((acl.grants[? (@.grantee=='AllUsers')] size > 0) or policyStatus.isPublic is true) and publicAccessBlockConfiguration does not exist) or ((acl.grants[?(@.grantee=='AllUsers')] size > 0) and publicAccessBlockConfiguration.ignorePublicAcis is false) or (policyStatus.isPublic is true and publicAccessBlockConfiguration.restrictPublicBuckets is false)) and websiteConfiguration does not exist" Why did this alert get generated?

  • A. configuration of the S3 bucket
  • B. network traffic to the S3 bucket
  • C. anomalous behaviors
  • D. an event within the cloud account

Answer: B

 

NEW QUESTION 36
......

Master 2021 Latest The Questions Cloud Security Engineer and Pass PCCSE  Real Exam!: https://www.actualtorrent.com/PCCSE-questions-answers.html

A fully updated 2021 PCCSE Exam Dumps exam guide from training expert ActualTorrent: https://drive.google.com/open?id=1i-_mkc7RxqrAAkPNxMPkRkion32z1Lgm

Related Blogs

more
Palo Alto Networks PCCSE Certification Practice Exam

Copyright © 2026 ACTUALTORRENT.COM. All rights reserved. All trademarks are the property of their respective owners and we don't provide actual questions from any vendor.