Nest 0 Cart
Nest Account
Popular Exams
All Categories...
Nest
Nest 0
Contact
Log In / Sign Up
Copyright 2024 © store. All rights reserved.
Home Palo Alto Networks PCCSE

Palo Alto Networks PCCSE Exam Practice Questions (P. 5)

  • Full Access (252 questions)
  • Six months of Premium Access
  • Access to one million comments
  • Seamless ChatGPT Integration
  • Ability to download PDF files
  • Anki Flashcard files for revision
  • No Captcha & No AdSense
  • Advanced Exam Configuration
Get Contributor Access
Question #21
The security team wants to protect a web application container from an SQLi attack.
Which type of policy should the administrator create to protect the container?
  1. A
    CNAF
  2. B
    Runtime
  3. C
    Compliance
  4. D
    CNNF

Correct Answer:
A
Reference:
https://docs.paloaltonetworks.com/prisma/prisma-cloud/20-09/prisma-cloud-compute-edition-admin/firewalls/waas

Question #22
An S3 bucket within AWS has generated an alert by violating the Prisma Cloud Default policy `AWS S3 buckets are accessible to public`. The policy definition follows: config where cloud.type = 'aws' AND api.name='aws-s3api-get-bucket-acl' AND json.rule="((((acl.grants[?(@.grantee=='AllUsers')] size > 0) or policyStatus.isPublic is true) and publicAccessBlockConfiguration does not exist) or ((acl.grants[?(@.grantee=='AllUsers')] size > 0) and publicAccessBlockConfiguration.ignorePublicAcis is false) or (policyStatus.isPublic is true and publicAccessBlockConfiguration.restrictPublicBuckets is false)) and websiteConfiguration does not exist"
Why did this alert get generated?
  1. A
    an event within the cloud account
  2. B
    network traffic to the S3 bucket
  3. C
    configuration of the S3 bucket
  4. D
    anomalous behaviors

Correct Answer:
B

Question #23
DRAG DROP -
Which order of steps map a policy to a custom compliance standard?
(Drag the steps into the correct order of occurrence, from the first step to the last.)
Select and Place:


Correct Answer:

Question #24
A customer is interested in PCI requirements and needs to ensure that no privilege containers can start in the environment.
Which action needs to be set for `do not use privileged containers`?
  1. A
    Prevent
  2. B
    Alert
  3. C
    Block
  4. D
    Fail

Correct Answer:
(133)A
Reference:
https://docs.paloaltonetworks.com/content/dam/techdocs/en_US/pdf/prisma/prisma-cloud/prisma-cloud-policy-reference/prisma-cloud-policy- reference.pdf

Question #25
Given an existing ECS Cluster, which option shows the steps required to install the Console in Amazon ECS?
  1. A
    The console cannot natively run in an ECS cluster. A onebox deployment should be used.
  2. B
    Download and extract the release tarball Ensure that each node has its own storage for Console data Create the Console task definition Deploy the task definition
  3. C
    Download and extract release tarball Download task from AWS Create the Console task definition Deploy the task definition
  4. D
    Download and extract the release tarball Create an EFS file system and mount to each node in the cluster Create the Console task definition Deploy the task definition

Correct Answer:
D
Reference:
https://docs.paloaltonetworks.com/prisma/prisma-cloud/19-11/prisma-cloud-compute-edition-admin/install/install_amazon_ecs.html

Previous Questions Next Questions

All Pages