Palo Alto Networks Cloud Security Professional - CloudSec-Pro무료 덤프문제 풀어보기
A customer wants to turn on Auto Remediation.
Which policy type has the built-in CLI command for remediation?
Which policy type has the built-in CLI command for remediation?
정답: B
설명: (Fast2test 회원만 볼 수 있음)
What is the maximum number of access keys a user can generate in Prisma Cloud with a System Admin role?
정답: A
설명: (Fast2test 회원만 볼 수 있음)
Match the correct scanning mode for each given operation.
(Select your answer from the pull-down list. Answers may be used more than once or not at all.)
(Select your answer from the pull-down list. Answers may be used more than once or not at all.)
정답:
Explanation:
* Create SNS Topic Triggers: No data security scan
* Select an S3 bucket: Forward Scan only
* Select an S3 bucket with existing files: Forward or Backward Scan
* Link an S3 logging to CloudTrail: Backward Scan only
The scanning mode for Data Security in AWS typically depends on the configuration and the desired outcomes for monitoring and protecting data within S3 buckets.
Creating SNS Topic Triggers is a configuration step that does not directly involve scanning. It is part of setting up notifications for events in S3 buckets, but on its own, it does not initiate a data security scan.
Selecting an S3 bucket without specifying existing files typically implies that you intend to scan new objects as they are added to the bucket, which is known as a Forward Scan. This mode is proactive and scans files upon their arrival in the bucket.
When you select an S3 bucket with existing files, you can perform either Forward Scanning for new files or Backward Scanning to scan all existing files in the bucket. This option provides the most comprehensive scanning coverage for both new and existing data.
Linking an S3 logging to CloudTrail is usually a step taken to monitor access and changes to S3 resources. In the context of scanning, linking S3 to CloudTrail does not initiate a scan, but the CloudTrail logs can be used to trigger a Backward Scan if configured to do so, which scans historical files in the bucket based on CloudTrail events.
When configuring SSO how many IdP providers can be enabled for all the cloud accounts monitored by Prisma Cloud?
정답: C
설명: (Fast2test 회원만 볼 수 있음)
The Unusual protocol activity (Internal) network anomaly is generating too many alerts. An administrator has been asked to tune it to the option that will generate the least number of events without disabling it entirely.
Which strategy should the administrator use to achieve this goal?
Which strategy should the administrator use to achieve this goal?
정답: A
설명: (Fast2test 회원만 볼 수 있음)
Prisma Cloud cannot integrate which of the following secrets managers?
정답: C
설명: (Fast2test 회원만 볼 수 있음)
Which API calls can scan an image named myimage: latest with twistcli and then retrieve the results from Console?
정답: C
설명: (Fast2test 회원만 볼 수 있음)
How is the scope of each rule determined in the Prisma Cloud Compute host runtime policy?
정답: A
설명: (Fast2test 회원만 볼 수 있음)
Which ROL query is used to detect certain high-risk activities executed by a root user in AWS?
정답: B
설명: (Fast2test 회원만 볼 수 있음)
What is the frequency to create a compliance report? (Choose two.)
정답: A,C
설명: (Fast2test 회원만 볼 수 있음)