PCCSE 無料問題集「Palo Alto Networks Prisma Certified Cloud Security Engineer」

（A）HTTP libraries

（B）News bots

（C）Search engine crawlers

（D）Web scrapers

（A）Linux

（B）Windows

（C）Solaris

（D）Android

（E）MacOS

（A）HashiCorp Vault

（B）AWS Secret Manager

（C）IBM Secret Manager

（D）AzureKey Vault

（A）Config

（B）Network

（C）Audit Event

（D）Anomaly

（A）Content-type:application/xml

（B）x-redlock-auth

（C）Content-type:application/json

（D）>x-redlock-request-id

（A）Pull the Defender image to the ec2 node, copy and execute the curl | bash script, and start the Defender to ensure it is running.

（B）Execute the curl | bash script on the ec2 node.

（C）Configure the cloud credential in the console and allow cloud discovery to auto-protect the ec2 node.

（D）Generate DaemonSet file and apply DaemonSet to the twistlock namespace.

（A）twistcli images scan --console-address https://prisma-console.mydomain.local --auth-token TOKEN_VALUE -containerized -vulnerability-details REPORT_ID

（B）twistcli images scan -address https://prisma-console.mydomain.local -token TOKEN_VALUE
-containerized --details REPORT_ID

（C）twistcli images scan --address https://prisma-console.mydomain.local -token TOKENVALUE
-containerized -details myimage:latest

（D）twistcli images scan -console-address https://prisma-console.mydomain.local -auth-token MY_TOKEN -local-scan -details myimage:latest

（A）Access Key

（B）Prisma Cloud API URL

（C）Tags

（D）Secret Key

（E）Asset Name

（A）Set Alert Disposition to Aggressive

（B）Set the Alert Disposition to Conservative

（C）Change the Training Threshold to Low

（D）Disable the policy

（A）AWS, Azure, GCP, Oracle, IBM

（B）AWS, Azure, GCP, IBM

（C）AWS, Azure, GCP, IBM, Alibaba

（D）AWS, Azure, GCP, Oracle, Alibaba

（A）Build Your Rule (Build tab)

（B）Remediation

（C）Compliance Standards

（D）Details

（E）Build Your Rule (Run tab)

（A）Prisma Cloud supports IdP initiated SSO, and its SAML endpoint supports the POST and GET methods.

（B）An administrator can configure different Identity Providers (IdP) for all the cloud accounts that Prisma Cloud monitors.

（C）An administrator who needs to access the Prisma Cloud API can use SSO after configuration.

（D）Okta, Azure Active Directory, PingID, and others are supported via SAML.

（A）manual installation of the latest twistcli tool prior to the rolling upgrade

（B）all Defenders set in read-only mode before execution of the rolling upgrade

（C）additional workload licenses are required to perform the rolling upgrade

（D）an existing Console at version n-1

（E）a second location where you can install the Console

（A）SECURITY

（B）EVENT

（C）NETWORK

（D）CONFIG

（A）Run policies monitor resources and check for potential issues after these cloud resources are deployed.

（B）Run and Network policies belong to the configuration policy set.

（C）Build policies allow checking for security misconfigurations in the IaC templates and ensure these issues do not get into production.

（D）Run policies monitor network activities in the environment and check for potential issues during runtime.

（A）The process calling out to this domain was not part of the Container model.

（B）The Layer7 firewall detected this as anomalous behavior.

（C）The DNS was not learned as part of the Container model or added to the DNS allow list.

（D）This is a DNS known to be a source of malware.

（A）TLS

（B）HTTP

（C）SSH

（D）Tomcat Web Connector via AJP