• ホーム
  • ブログ
  • [2022年01月最新リリース]PCCSE問題集でCloud Security Engineer認証 [Q32-Q50]

[2022年01月最新リリース]PCCSE問題集でCloud Security Engineer認証 [Q32-Q50]

Share

[2022年01月最新リリース]PCCSE問題集でCloud Security Engineer認証

最新の完璧なPCCSE問題集問題と解答で100%パスさせます

質問 32
A customer wants to scan a serverless function as part of a build process.
Which twistcli command can be used to scan serverless functions?

  • A. twistcli function scan <SERVERLESS_FUNCT10N ZIP>
  • B. twistcli scan serverless <SERVERLESS_FUNCTION Z1P>
  • C. twistcli serverless scan <SERVERLESS_FUNCTION.ZIP>
  • D. twistcli serverless AWS <SERVERLESS_FUNCTION ZIP>

正解: C

 

質問 33
A customer is deploying Defenders to a Fargate environment. It wants to understand the vulnerabilities in the image it is deploying.
How should the customer automate vulnerability scanning for images deployed to Fargate?

  • A. Embed a Fargate Defender to automatically scan for vulnerabilities
  • B. Set up a vulnerability scanner on the registry
  • C. Designate a Fargate Defender to serve a dedicated image scanner
  • D. Use Cloud Compliance to identify misconfigured AWS accounts

正解: B

 

質問 34
A customer has a requirement to automatically protect all Lambda functions with runtime protection. What is the process to automatically protect all the Lambda functions?

  • A. Configure a function scan policy from the Defend/Vulnerabilities/Functions page
  • B. Configure a manually embedded Lambda Defender.
  • C. Configure a serveriess auto-protect rule for the functions.
  • D. Configure serveriess radar from the Defend/Compliance/Cloud Platforms page

正解: D

 

質問 35
An administrator has been tasked with creating a custom service that will download any existing compliance report from a Prisma Cloud Enterprise.
tenant-In which order will the APIs be executed for this service? (Drag the steps into the correct order of occurrence from the first step to the last)

正解:

解説:

 

質問 36
A Prisma Cloud administrator is tasked with pulling a report via API The Prisma Cloud tenant is located on app2.pnsmacfoudjo. What is the correct API endpoint?

  • A. https //api2-prismacloud io
  • B. https://api2eu-prismacioud.io
  • C. https://api pnsmacloud.cn
  • D. https://api.prismactoud.io

正解: B

 

質問 37
The development team wants to block Cross Site Scripting attacks from pods its environment How should the team construct the CNAF policy to protect against this attack?

  • A. create a Container CNAF policy, targeted at a specific resource, check the box for XSS attack protection and set the action to prevent
  • B. create a Host CNAF policy targeted at a specific resource, check the box for XSS attack protection and set the action to "prevent"
  • C. create a Container CNAF policy, targeted at a specific resource, check the box for XSS attack protection and set the action to alert
  • D. create a Container CNAF policy, targeted at a specific resource, and they should set "Explicitly allowed inbound IP sources" to the IP address of the pod.

正解: B

 

質問 38
A business unit has acquired a company that has a very large AWS account footprint The plan is to immediately start onboarding the new company's AWS accounts into Prisma Cloud Enterprise tenant immediately The current company is currently not using AWS Organizations and will require each account to be onboarded individually The business unit has decided to cover the scope of this action and determined that a script should be written to onboard each of these accounts with general settings to gam immediate posture visibility across the accounts.
Which API endpoint will specifically add these accounts into the Prisma Cloud Enterprise tenant?

  • A. https/Zapiprismacloud lo/accountgroup/aws
  • B. https ://api prismacloud 10/account/aws
  • C. https://api.pnsmacloud io/cloud/aws
  • D. https //api pnsmacloud io/cloud/

正解: C

 

質問 39
Which step is included when configuring Kubernetes to use Prisma Cloud Compute as an admission controller?

  • A. copy the admission controller configuration from the Console and apply it to Kubernetes.
  • B. create a new namespace in Kubernetes called admission-controller.
  • C. enable Kubernetes auditing from the Defend > Access > Kubernetes page in the Console.
  • D. copy the Console address and set the config map for the default namespace.

正解: B

 

質問 40
Which "kind" of Kubernetes object is configured to ensure that Defender is acting as the admission controller?

  • A. MutatingWebhookConfiguration
  • B. ValidatingWebhookConfiguration
  • C. PodSecurityPolicies
  • D. DestinationRules

正解: B

 

質問 41
Which two processes ensure that builds can function after a Console upgrade? (Choose two )

  • A. updating any build environments that have twistcli included to use the latest version
  • B. allowing Jenkins to automatically update the plugin
  • C. configuring build pipelines to download twistcli at the start of each build
  • D. creating a new policy that allows older versions of twistcli to connect the Console

正解: A,B

 

質問 42
You wish to create a custom policy with build and run subtypes. Match the query types for each example.
(Select your answer from the pull-down list. Answers may be used more than once or not at all.)

正解:

解説:

Reference:
https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-admin/prisma-cloud-policies/create-a- policy.html

 

質問 43
Per security requirements, an administrator needs to provide a list of people who are receiving e-mails for Prisma Cloud alerts.
Where can the administrator locate this list of e-mail recipients?

  • A. Target section within an Alert Rule.
  • B. Users section within Settings.
  • C. Set Alert Notification section within an Alert Rule.
  • D. Notification Template section within Alerts.

正解: A

 

質問 44
An organization wants to be notified immediately to any "High Severity" alerts for the account group "Clinical Trials" via Slack.
Which option shows the steps the organization can use to achieve this goal?

  • A. 1. Under the "Select Policies" tab, filter on severity and select "High"
    2. Under the Set Alert Notification tab, choose Slack and populate the channel
    3. Set Frequency to "As it Happens"
    4. Configure Slack Integration
    5. Create an Alert rule
  • B. 1. Configure Slack Integration
    2. Create an alert rule and select "Clinical Trials" as the account group
    3. Under the "Select Policies" tab, filter on severity and select "High"
    4. Under the Set Alert Notification tab, choose Slack and populate the channel
    5. Set Frequency to "As it Happens"
  • C. 1. Create an alert rule and select "Clinical Trials" as the account group
    2. Under the "Select Policies" tab, filter on severity and select "High"
    3. Under the Set Alert Notification tab, choose Slack and populate the channel
    4. Set Frequency to "As it Happens"
    5. Set up the Slack Integration to complete the configuration
  • D. 1. Configure Slack Integration
    2. Create an alert rule
    3. Under the "Select Policies" tab, filter on severity and select "High"
    4. Under the Set Alert Notification tab, choose Slack and populate the channel
    5. Set Frequency to "As it Happens"

正解: C

 

質問 45
The compliance team needs to associate Prisma Cloud policies with compliance frameworks. Which option should the team select to perform this task?

  • A. Custom Compliance
  • B. Alert Rules
  • C. Policies
  • D. Compliance

正解: C

解説:
Reference:
compliance/compliance-dashboard.html

 

質問 46
A customer has a requirement to scan serverless functions for vulnerabilities. Which three settings are required to configure serverless scanning? (Choose three )

  • A. Console Address
  • B. Credential
  • C. Region
  • D. Provider
  • E. Defender Name

正解: A,D,E

 

質問 47
Which type of compliance check is available for rules under Defend > Compliance > Containers and Images
> CI?

  • A. Host
  • B. Functions
  • C. Image
  • D. Container

正解: A

 

質問 48
What is the order of steps in a Jenkins pipeline scan?
(Drag the steps into the correct order of occurrence, from the first step to the last.)

正解:

解説:

 

質問 49
Which statement accurately characterizes SSO Integration on Prisma Cloud?

  • A. Prisma Cloud supports IdP initiated SSO. and its SAML endpoint supports the POST and GET methods
  • B. An administrator who needs to access the Prisma Cloud API can use SSO after configuration.
  • C. Okta, Azure Active Directory. PingID, and others are supported via SAML
  • D. An administrator can configure different Identity Providers (IdP) for all the cloud accounts that Prisma Cloud monitors.

正解: C

 

質問 50
......

最新のPCCSE試験問題集でPalo Alto Networks試験トレーニング:https://www.goshiken.com/Palo-Alto-Networks/PCCSE-mondaishu.html

2022年最新のの問題PCCSE問題集で最新のPalo Alto Networks試験を使おう:https://drive.google.com/open?id=1mkEztLw_F7TTSX428AQm2okBWMj4V1r6

関するブログ

もっと
PCCSE無料問題集