Palo Alto Networks PCCSE Quiz 6 Topic 1 Questions 26-30

Question: 1

A customer has Defenders connected to Prisma Cloud Enterprise The Defenders are deployed as a DaemonSet in OpenShift. How should the administrator get a report of vulnerabilities on hosts'?

ANavigate to Defend > Vulnerabilities > VM Images

BNavigate to Monitor > Vulnerabilities > Hosts

CNavigate to Defend > Vulnerabilities > Hosts

DNavigate to Monitor > Vulnerabilities > CVE Viewer

Show Answer

Question: 2

A customer wants to be notified about port scanning network activities in their environment Which policy type detects this behavior?

ANetwork

BAnomaly

CConfig

DPort Scan

Show Answer

Question: 3

You have onboarded a public cloud account into Prisma Cloud Enterprise Configuration Resource ingestion is visible in the Asset Inventory for the onboarded account, but no alerts are being generated for the configuration assets in the account

Config policies are enabled in the Prisma Cloud Enterprise tenant, with those policies associated to existing alert rules RQL statements on the Investigate matching those policies return config resource results successfully

Why are no alerts being generated''

AThe public cloud account does not have audit trail ingestion enabled.

BThe public cloud account is not associated with an alert notification.

CThe public cloud account does not have access to configuration resources.

DThe public cloud account is not associated with an alert rule

Show Answer

Question: 4

You are an existing customer of Prisma Cloud Enterprise. You want to onboard a public cloud account and immediately see all of the alerts associated with this account based off ALL of your tenant's existing enabled policies. There is no requirement to send alerts from this account to a downstream application at this time.

Which options shows the steps required during the alert rule creation process to achieve this objective?

AEnsure the public cloud account is assigned to an account group
Assign the confirmed account group to alert rule
Select one or more policies as part of the alert rule
Add alert notifications
Confirm the alert rule

BEnsure the public cloud account is assigned to an account group
Assign the confirmed account group to alert rule
Select one or more policies checkbox as part of the alert rule
Confirm the alert rule

CEnsure the public cloud account is assigned to an account group
Assign the confirmed account group to alert rule
Select 'select all policies' checkbox as part of the alert rule
Confirm the alert rule

DEnsure the public cloud account is assigned to an account group
Assign the confirmed account group to alert rule
Select 'select all policies' checkbox as part of the alert rule
Add alert notifications
Confirm the alert rule

Show Answer

Question: 5

Given this information:

* The Console is located at https//prisma-console mydomain local

* The username is ciuser

* The password is password123

* The Image to scan is myimage latest

Which twistcli command should be used to scan a Container for vulnerabilities and display the details about each vulnerability?

Atwistcli images scan ---console-address https //prisma-console mydomain local -u ciuser -p password123 -details myimage latest

Btwistcli images scan ---address prisma-console mydomain local -u ciuser -p password123 -vulnerability-details myimage latest

Ctwistcli images scan -address https //prisma-console mydomain local -u ciuser -p password123 -details myimage latest

Dtwistcli images scan ---console-address prisma-console mydomain local -u ciuser -p password!23 -vulnerability-details myimage.latest

Show Answer

Palo Alto Networks PCCSE Quiz:6 Topic:1 Questions:26-30