最適な練習法にはPCCSE問題集で素晴らしいPCCSE試験問題PDF
更新された検証済みの合格させるPCCSE試験リアル問題と解答があります
質問 # 49
You have onboarded a public cloud account into Prisma Cloud Enterprise. Configuration Resource ingestion is visible in the Asset Inventory for the onboarded account, but no alerts are being generated for the configuration assets in the account.
Config policies are enabled in the Prisma Cloud Enterprise tenant, with those policies associated to existing alert rules. ROL statements on the investigate matching those policies return config resource results successfully.
Why are no alerts being generated?
- A. The public cloud account does not have audit trail ingestion enabled.
- B. The public cloud account does not access to configuration resources.
- C. The public cloud account is not associated with an alert notification.
- D. The public cloud account is not associated with an alert rule.
正解:D
解説:
In Prisma Cloud Enterprise, for alerts to be generated for configuration assets in an onboarded public cloud account, it is essential that the account is associated with an alert rule that matches the enabled config policies. If the account is not linked to an alert rule or if the existing alert rules do not match the config policies, no alerts will be generated even though configuration resource ingestion is visible, and RQL statements return config resource results. This requirement emphasizes the need for a well-structured alerting mechanism to ensure that security incidents are promptly identified and addressed.
質問 # 50
Which two CI/CD plugins are supported by Prisma Cloud as part of its DevOps Security? (Choose two.).
- A. BitBucket
- B. IntelliJ
- C. Visual Studio Code
- D. CircleCI
正解:A、D
解説:
For CI/CD plugins supported by Prisma Cloud as part of its DevOps Security, BitBucket (Option A) and CircleCI (Option C) are the correct choices. BitBucket is widely used for source code management and collaboration, while CircleCI is a popular CI/CD platform. Prisma Cloud integrates with these tools to scan code repositories and CI/CD pipelines for security issues, ensuring that vulnerabilities are identified and addressed early in the development process. Visual Studio Code (Option B) and IntelliJ (Option D) are IDEs rather than CI/CD tools, and while they are supported by Prisma Cloud for scanning and security purposes, they are not considered CI/CD plugins.
質問 # 51
Which three options are selectable in a CI policy for image scanning with Jenkins or twistcli? (Choose three.)
- A. Apply rule only when vendor fixes are available
- B. Credential
- C. Grace Period
- D. Failure threshold
- E. Scope - Scans run on a particular host
正解:B、C、D
質問 # 52
You are tasked with configuring a Prisma Cloud build policy for Terraform. What type of query is necessary to complete this policy?
- A. CloudFormation
- B. Terraform
- C. JSON
- D. YAML I
正解:C
質問 # 53
What is the order of steps in a Jenkins pipeline scan?
(Drag the steps into the correct order of occurrence, from the first step to the last.)
正解:
解説:
Explanation
Table Description automatically generated with medium confidence
質問 # 54
A customer has multiple violations in the environment including:
User namespace is enabled
An LDAP server is enabled
SSH root is enabled
Which section of Console should the administrator use to review these findings?
- A. Compliance
- B. Manage
- C. Vulnerabilities
- D. Radar
正解:B
質問 # 55
A business unit has acquired a company that has a very large AWS account footprint. The plan is to immediately start onboarding the new company's AWS accounts into Prisma Cloud Enterprise tenant immediately. The current company is currently not using AWS Organizations and will require each account to be onboarded individually.
The business unit has decided to cover the scope of this action and determined that a script should be written to onboard each of these accounts with general settings to gain immediate posture visibility across the accounts.
Which API endpoint will specifically add these accounts into the Prisma Cloud Enterprise tenant?
- A. https://api.prismacloud.io/cloud/
- B. https://api.prismacloud.io/cloud/aws
- C. https://api.prismacloud.io/accountgroup/aws
- D. https://api.prismacloud.io/account/aws
正解:D
質問 # 56
When configuring SSO how many IdP providers can be enabled for all the cloud accounts monitored by Prisma Cloud?
- A. 0
- B. 1
- C. 2
- D. 3
正解:B
質問 # 57
Which file extension type is supported for Malware scanning in Prisma Cloud Data Security (PCDS)?
- A. .py
- B. .apk
- C. .vb
- D. .bat
正解:A
解説:
Prisma Cloud Data Security (PCDS) supports malware scanning across various file types to protect against malicious code embedded in files stored in cloud environments. Among the listed options, .py (Python scripts) is a supported file extension type for malware scanning. Python files can contain executable scripts, which makes them potential vectors for malware. Prisma Cloud's ability to scan .py files ensures that Python-based applications and scripts are free from malicious code, enhancing the overall security posture.
質問 # 58
What are two built-in RBAC permission groups for Prisma Cloud? (Choose two.)
- A. Group Admin
- B. Account Group Admin
- C. Group Membership Admin
- D. Account Group Read Only
正解:B、C
解説:
Prisma Cloud includes built-in Role-Based Access Control (RBAC) permission groups to manage user access and permissions efficiently. Among the options, Group Membership Admin and Account Group Admin are two built-in RBAC permission groups. Group Membership Admins are responsible for managing user memberships within groups, while Account Group Admins have administrative privileges over specific account groups, allowing them to manage resources and policies within those groups. These roles help in delegating administrative tasks and enforcing the principle of least privilege.
質問 # 59
Which method should be used to authenticate to Prisma Cloud Enterprise programmatically?
- A. basic authentication
- B. single sign-on
- C. SAML
- D. access key
正解:D
解説:
To authenticate to Prisma Cloud Enterprise programmatically, the use of an access key is the most suitable method among the given options. Access keys, typically consisting of an Access Key ID and Secret Access Key, are used for programmatic calls to the Prisma Cloud API. This method enables secure, authenticated API requests to Prisma Cloud services without requiring manual user intervention, which is essential for automation and integration with CI/CD pipelines.
Reference to the use of access keys for programmatic access can often be found in the API documentation of cloud security platforms like Prisma Cloud. While specific documentation from Prisma Cloud is not directly quoted here, the general practice across cloud services (AWS, Azure, GCP) supports the use of access keys for API authentication, making it a verified approach for Prisma Cloud as well.
質問 # 60
You have onboarded a public cloud account into Prisma Cloud Enterprise. Configuration Resource ingestion is visible in the Asset Inventory for the onboarded account, but no alerts are being generated for the configuration assets in the account.
Config policies are enabled in the Prisma Cloud Enterprise tenant, with those policies associated to existing alert rules. ROL statements on the investigate matching those policies return config resource results successfully.
Why are no alerts being generated?
- A. The public cloud account does not have audit trail ingestion enabled.
- B. The public cloud account is not associated with an alert rule.
- C. The public cloud account is not associated with an alert notification.
- D. The public cloud account does not access to configuration resources.
正解:C
質問 # 61
The Unusual protocol activity (Internal) network anomaly is generating too many alerts. An administrator has been asked to tune it to the option that will generate the least number of events without disabling it entirely.
Which strategy should the administrator use to achieve this goal?
- A. Set Alert Disposition to Aggressive
- B. Set the Alert Disposition to Conservative
- C. Change the Training Threshold to Low
- D. Disable the policy
正解:C
解説:
Section: (none)
Explanation
質問 # 62
Which command should be used in the Prisma Cloud twistcli tool to scan the nginx:latest image for vulnerabilities and compliance issues?
- A.

- B.

- C.

- D.

正解:A
解説:
The correct command to scan the nginx:latest image for vulnerabilities and compliance issues using the Prisma Cloud twistcli tool is shown in Option D. This command uses twistcli images scan with specified parameters for the console address, username, and password, and it outputs the results to a file named scan-results.json. This allows for the scanning results to be saved and reviewed in a structured format, which aids in further analysis and tracking of vulnerabilities and compliance issues.
質問 # 63
Which RQL will trigger the following audit event activity?
- A. event from cloud.audit_logs where operation IN ( 'GetBucketWebsite', 'PutBucketWebsite', 'DeleteBucketWebsite')
- B. event from cloud.audit_logs where operation ConsoleLogin AND user = 'root1
- C. event from cloud.audit_logs where operation IN
('cloudsql.instances.update','cloudsql.sslCerts.create', cloudsql.instances.create','cloudsq - D. event from cloud.audit_logs where cloud.service = s3.amazonaws.com' AND json.rule = $.userAgent contains 'parrot1
正解:B
解説:
The correct RQL to trigger the audit event activity shown is Option A. This RQL is designed to capture events from cloud audit logs where a ConsoleLogin operation occurs by the 'root' user. The given audit event details match this RQL's criteria, which specifies the operation type and the user involved in the event.
質問 # 64
An organization wants to be notified immediately to any "High Seventy" alerts for the account group
"Clinical Trials" via Slack Which option shows the steps should the organization can use to achieve this goal?
- A. 1. Create an alert rule and select "Clinical Trials" as the account group
2. Under the "Select Policies" tab filter on seventy and select "High"
3. Under the Set Alert Notification tab choose Slack and populate the channel
4. Set Frequency to "As it Happens"
5. Set up the Slack Integration to complete the configuration - B. 1 Configure Slack Integration
2. Create an alert rule
3. Under the "Select Policies" tab, filter on seventy and select "High"
4. Under the Set Alert Notification tab- choose Slack and populate the channel
5. Set Frequency to "As it Happens" - C. 1. Under the "Select Policies" tab filter on seventy and select "High"
2. Under the Set Alert Notification tab choose Slack and populate the
3. Set Frequency to "As it Happens"
4. Configure Slack Integration
5. Create an Alert rule - D. 1. Configure Slack Integration
2 Create an alert rule and select "Clinical Trials" as the account group
3. Under the "Select Policies" tab filter on seventy and select "High"
4. Under the Set Alert Notification tab choose Slack and populate the channel
5. Set Frequency to "As it Happens"
正解:D
質問 # 65
Prisma Cloud cannot integrate which of the following secrets managers?
- A. AWS Secret Manager
- B. AzureKey Vault
- C. IBM Secret Manager
- D. HashiCorp Vault
正解:C
解説:
Prisma Cloud integrates with various secret managers to manage sensitive information such as passwords, tokens, and keys. However, it cannot integrate with IBM Secret Manager. The other options, Azure Key Vault, HashiCorp Vault, and AWS Secret Manager, are supported for integration with Prisma Cloud, providing secure storage and handling of secrets.
質問 # 66
Match the correct scanning mode for each given operation.
(Select your answer from the pull-down list. Answers may be used more than once or not at all.)
正解:
解説:
Explanation
Diagram Description automatically generated
質問 # 67
Which role does Prisma Cloud play when configuring SSO?
- A. Identity provider issuer
- B. Service provider
- C. SAML
- D. JIT
正解:B
解説:
When configuring Single Sign-On (SSO) in Prisma Cloud, the platform acts as the Service Provider (SP). In the SSO process, the Service Provider relies on an Identity Provider (IdP) to authenticate users. Prisma Cloud, as the SP, integrates with an IdP to allow users to log in using their existing credentials managed by the IdP. This setup simplifies the authentication process, enhances security by centralizing user credentials, and provides a seamless user experience.
質問 # 68
Which three types of classifications are available in the Data Security module? (Choose three.)
- A. Compliance standard
- B. Malware
- C. Malicious IP
- D. Personally identifiable information
- E. Financial information
正解:B、D、E
解説:
https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-admin/prisma-cloud-data-security.html
質問 # 69
Given the following information, which twistcli command should be run if an administrator were to exec into a running container and scan it from within using an access token for authentication?
* Console is located at https://prisma-console.mydomain.local
* Token is: TOKEN_VALUE
* Report ID is: REPORTJD
* Container image running is: myimage:latest
- A. twistcli images scan -console-address https://prisma-console.mydomain.local -auth-token MY_TOKEN -local-scan -details myimage:latest
- B. twistcli images scan --address https://prisma-console.mydomain.local -token TOKENVALUE -containerized -details myimage:latest
- C. twistcli images scan -address https://prisma-console.mydomain.local -token TOKEN_VALUE -containerized --details REPORT_ID
- D. twistcli images scan --console-address https://prisma-console.mydomain.local --auth-token TOKEN_VALUE -containerized -vulnerability-details REPORT_ID
正解:A
解説:
The twistcli command for scanning images within Prisma Cloud requires specifying the console address, an authentication token, and the target for the scan. Option B correctly formats the command with --console-address to specify the Prisma Cloud console URL, --auth-token for the authentication token, and --local-scan to indicate that the scan is being performed from within a container. The --details flag followed by the image name (myimage:latest) specifies the target image for the scan. The option --containerized is not necessary as the --local-scan already implies scanning within a container environment. Therefore, Option B is the most accurate and valid command based on the given information.
質問 # 70
A customer wants to monitor the company's AWS accounts via Prisma Cloud, but only needs the resource configuration to be monitored for now.
Which two pieces of information do you need to onboard this account? (Choose two.)
- A. Role ARN
- B. Subscription ID
- C. External ID
- D. Cloudtrail
- E. Active Directory ID
正解:A、D
質問 # 71
......
Palo Alto Networks PCCSE試験は、クラウドセキュリティエンジニアのスキルと知識をテストするために設計されています。試験は、クラウドインフラセキュリティ、データ保護、ネットワークセキュリティ、コンプライアンスなど、クラウドセキュリティに関連する幅広いトピックをカバーしています。試験は、クラウド環境のセキュリティを確保する専門家が自分の専門知識を検証するための理想的なものです。
Palo Alto Networks PCCSE:Prisma Certified Cloud Security Engineer は、クラウドセキュリティエンジニアリングにおける専門知識を証明することを目的とした上級レベルの認定プログラムです。この認定プログラムは、クラウド環境のセキュリティ確保とデータ保護、プライバシー、コンプライアンスを担当するITプロフェッショナルを対象としています。業界に認められたこの認定プログラムにより、プロフェッショナルは、クラウドセキュリティエンジニアリングのスキルと知識を証明することができます。
更新されたPDF(2024年最新)実際にある PCCSE試験問題:https://jp.fast2test.com/PCCSE-premium-file.html
問題集返金保証付きのPCCSE公式問題集:https://drive.google.com/open?id=1JPPHy5e7qcMlK1BNihCiyygd728JvTiF