최신 PCCSE 무료덤프 - Palo Alto Networks Prisma Certified Cloud Security Engineer

문제1

What should be used to associate Prisma Cloud policies with compliance frameworks?

A. Alert rules

B. Policies

C. Compliance

D. Custom compliance

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제2

How often do Defenders share logs with Console?

A. Every 1 hour

B. Every 30 minutes

C. Every 10 minutes

D. Real time

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제3

In Azure, what permissions need to be added to Management Groups to allow Prisma Cloud to calculate net effective permissions?

A. Microsoft.Management/managementGroups/descendants/calculate

B. PaloAltoNetworks.PrismaCloud/managementGroups/descendants/read

C. PaloAltoNetworks.PrismaCloud/managementGroups/

D. Microsoft.Management/managementGroups/descendants/read

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제4

Given the following JSON query:
$.resource[*].aws_s3_bucket exists
Which tab is the correct place to add the JSON query when creating a Config policy?

A. Build Your Rule (Build tab)

B. Remediation

C. Build Your Rule (Run tab)

D. Compliance Standards

E. Details

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제5

Which two offerings will scan container images in Jenkins pipelines? (Choose two.)

A. Compute Jenkins plugin

B. Compute Azure DevOps plugin

C. Prisma Cloud Visual Studio Code plugin with Jenkins integration

D. Twistcli

E. Jenkins Docker plugin

정답: A,D

설명: (DumpTOP 회원만 볼 수 있음)

문제6

One of the resources on the network has triggered an alert for a Default Config policy.
Given the following resource JSON snippet:
Which RQL detected the vulnerability?
A)

B)
C)
D)

A. Option D

B. Option C

C. Option B

D. Option A

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

문제7

Which of the below actions would indicate - "The timestamp on the compliance dashboard?

A. indicates the most recent data

B. indicates when the data was ingested

C. indicates when the data was aggregated for the results displayed

D. indicates the most recent alert generated

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

문제8

What is the correct method for ensuring key-sensitive data related to SSNs and credit card numbers cannot be viewed in Dashboard > Data view during investigations?

A. Go to Settings > Data > Snippet Masking and select Full Mask.

B. Go to Settings > Cloud Accounts > Edit Cloud Account > Assign Account Group and select a group with limited permissions.

C. Go to Settings > Data > Data Patterns, search for SSN Pattern, edit it, and modify the proximity keywords.

D. Go to Policies > Data > Clone > Modify Objects containing Financial Information publicly exposed and change the file exposure to Private.

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제9

What are two alarm types that are registered after alarms are enabled? (Choose two.)

A. Resource status

B. External integrations status

C. Onboarded Cloud Accounts status

D. Compute resources

정답: B,C

설명: (DumpTOP 회원만 볼 수 있음)

문제10

A customer wants to monitor the company's AWS accounts via Prisma Cloud, but only needs the resource configuration to be monitored for now.
Which two pieces of information do you need to onboard this account? (Choose two.)

A. Active Directory ID

B. Role ARN

C. External ID

D. Subscription ID

E. Cloudtrail

정답: B,E

설명: (DumpTOP 회원만 볼 수 있음)

문제11

A business unit has acquired a company that has a very large AWS account footprint. The plan is to immediately start onboarding the new company's AWS accounts into Prisma Cloud Enterprise tenant immediately. The current company is currently not using AWS Organizations and will require each account to be onboarded individually.
The business unit has decided to cover the scope of this action and determined that a script should be written to onboard each of these accounts with general settings to gain immediate posture visibility across the accounts.
Which API endpoint will specifically add these accounts into the Prisma Cloud Enterprise tenant?

A. https://api.prismacloud.io/cloud/

B. https://api.prismacloud.io/accountgroup/aws

C. https://api.prismacloud.io/account/aws

D. https://api.prismacloud.io/cloud/aws

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제12

Which RQL query type is invalid?

A. Config

B. Event

C. Incident

D. IAM

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

문제13

Given the following RQL:

Which audit event snippet is identified by the RQL?

A.

B.

C.

D.

정답: C

문제14

Which two bot categories belong to unknown bots under Web-Application and API Security (WAAS) bot protection? (Choose two.)

A. News bots

B. Web scrapers

C. HTTP libraries

D. Search engine crawlers

정답: B,C

설명: (DumpTOP 회원만 볼 수 있음)

문제15

An administrator of Prisma Cloud wants to enable role-based access control for Docker engine.
Which configuration step is needed first to accomplish this task?

A. Configure Defender's authentication sequence to first use an identity provider and then Console.

B. Set Docker's listener type to TCP.

C. Configure Docker's authentication sequence to first use an identity provider and then Console.

D. Set Defender's listener type to TCP.

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제16

Which Defender type performs registry scanning?

A. Container

B. Serverless

C. Host

D. RASP

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제17

Which policy type provides information about connections from suspicious IPs in a customer database?

A. Network

B. AutoFocus

C. Threat detection

D. Anomaly

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제18

Given the following audit event activity snippet:

Which RQL will be triggered by the audit event?
A)
B)
C)
D)

A. Option D

B. Option C

C. Option B

D. Option A

정답: A

문제19

Match the service on the right that evaluates each exposure type on the left.
(Select your answer from the pull-down list. Answers may be used more than once or not at all.)

정답:

최신 PCCSE 무료덤프 - Palo Alto Networks Prisma Certified Cloud Security Engineer

우리와 연락하기

유용한 링크

최신 업데이트