QUESTION: 77

DRAG DROP (Drag and Drop is not supported)
You wish to create a custom policy with build and run subtypes. Match the query types for each example.
(Select your answer from the pull-down list. Answers may be used more than once or not at all.)

See Explanation section for answer.

Answer(s): A

Explanation:

Reference:

https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-admin/prisma-cloud- policies/create-a- policy.html

Reveal Solution Next Question

QUESTION: 78

Which statement is true regarding CloudFormation templates?

Scan support does not currently exist for nested references, macros, or intrinsic functions.
A single template or a zip archive of template files cannot be scanned with a single API request.
Request-Header-Field `cloudformation-version' is required to request a scan.
Scan support is provided for JSON, HTML and YAML formats.

Answer(s): A

Explanation:

CloudFormation templates, used to describe and provision all the infrastructure resources in cloud environments, support various elements including resources, mappings, parameters, and outputs. However, scan support for CloudFormation templates does not currently exist for nested references, macros, or intrinsic functions (option A). These advanced CloudFormation features can introduce complexity in scanning and interpreting the templates accurately for security and compliance checks.

Reference:

https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-admin/prisma- cloud-devops- security/use-the-prisma-cloud-iac-scan-rest-api.html

Reveal Solution Next Question

QUESTION: 79

A customer has a large environment that needs to upgrade Console without upgrading all Defenders at one time.

What are two prerequisites prior to performing a rolling upgrade of Defenders? (Choose two.)

manual installation of the latest twistcli tool prior to the rolling upgrade
all Defenders set in read-only mode before execution of the rolling upgrade
a second location where you can install the Console
additional workload licenses are required to perform the rolling upgrade
an existing Console at version n-1

Answer(s): B,E

Explanation:

Prior to performing a rolling upgrade of Defenders, which are components responsible for enforcing security policies and protecting cloud workloads, one of the prerequisites is having an existing Console at version n-1 (option E). This ensures that the Console, which manages the Defenders, is compatible and can support the upgraded Defenders. A rolling upgrade allows for minimal disruption and ensures continuous protection during the upgrade process. The other options listed do not directly pertain to the prerequisites for a Defender rolling upgrade.

Reveal Solution Next Question

QUESTION: 80

An administrator sees that a runtime audit has been generated for a Container. The audit message is "DNS resolution of suspicious name wikipedia.com. type A".

Why would this message appear as an audit?

The DNS was not learned as part of the Container model or added to the DNS allow list.
This is a DNS known to be a source of malware.
The process calling out to this domain was not part of the Container model.
The Layer7 firewall detected this as anomalous behavior.

Answer(s): A

Explanation:

The runtime audit message indicating "DNS resolution of suspicious name wikipedia.com. type A" would appear as an audit because the DNS was not learned as part of the Container model or added to the DNS allow list (option A). In cloud security platforms like Prisma Cloud, runtime protection policies monitor the behavior of running containers and compare it against a learned model of expected behavior. If a container attempts to resolve a DNS name that was not observed during the learning phase or specifically allowed, it triggers an audit event to alert security teams of potentially malicious activity.

Reveal Solution Next Question

Free PCCSE Exam Braindumps (page: 21)

QUESTION: 77

Explanation:

Reference:

QUESTION: 78

Explanation:

Reference:

QUESTION: 79

Explanation:

QUESTION: 80

Explanation:

PCCSE Discussions & Posts