Palo Alto Networks PCCSE Real Exam Questions
The questions for PCCSE were last updated at Dec 24,2024.
- Exam Code: PCCSE
- Exam Name: Prisma Certified Cloud Security Engineer
- Certification Provider: Palo Alto Networks
- Latest update: Dec 24,2024
A security team notices a number of anomalies under Monitor > Events. The incident response team works with the developers to determine that these anomalies are false positives.
What will be the effect if the security team chooses to Relearn on this image?
- A . The model is deleted, and Defender will relearn for 24 hours.
- B . The anomalies detected will automatically be added to the model.
- C . The model is deleted and returns to the initial learning state.
- D . The model is retained, and any new behavior observed during the new learning period will be added to the existing model.
A customer has multiple violations in the environment including:
User namespace is enabled
An LDAP server is enabled
SSH root is enabled
Which section of Console should the administrator use to review these findings?
- A . Manage
- B . Vulnerabilities
- C . Radar
- D . Compliance
A customer has multiple violations in the environment including:
User namespace is enabled
An LDAP server is enabled
SSH root is enabled
Which section of Console should the administrator use to review these findings?
- A . Manage
- B . Vulnerabilities
- C . Radar
- D . Compliance
A customer has multiple violations in the environment including:
User namespace is enabled
An LDAP server is enabled
SSH root is enabled
Which section of Console should the administrator use to review these findings?
- A . Manage
- B . Vulnerabilities
- C . Radar
- D . Compliance
A customer has multiple violations in the environment including:
User namespace is enabled
An LDAP server is enabled
SSH root is enabled
Which section of Console should the administrator use to review these findings?
- A . Manage
- B . Vulnerabilities
- C . Radar
- D . Compliance
DRAG DROP
Which order of steps map a policy to a custom compliance standard? (Drag the steps into the correct order of occurrence, from the first step to the last.)
An administrator has access to a Prisma Cloud Enterprise.
What are the steps to deploy a single container Defender on an ec2 node?
- A . Pull the Defender image to the ec2 node, copy and execute the curl | bash script, and start the Defender to ensure it is running.
- B . Execute the curl | bash script on the ec2 node.
- C . Configure the cloud credential in the console and allow cloud discovery to auto-protect the ec2 node.
- D . Generate DaemonSet file and apply DaemonSet to the twistlock namespace.
Create an Alert rule
Which statement is true regarding CloudFormation templates?
- A . Scan support does not currently exist for nested references, macros, or intrinsic functions.
- B . A single template or a zip archive of template files cannot be scanned with a single API request.
- C . Request-Header-Field ‘cloudformation-version’ is required to request a scan.
- D . Scan support is provided for JSON, HTML and YAML formats.
Which statement is true regarding CloudFormation templates?
- A . Scan support does not currently exist for nested references, macros, or intrinsic functions.
- B . A single template or a zip archive of template files cannot be scanned with a single API request.
- C . Request-Header-Field ‘cloudformation-version’ is required to request a scan.
- D . Scan support is provided for JSON, HTML and YAML formats.