Practice Free PCCSE Exam Online Questions

An administrator has a requirement to ingest all Console and Defender logs to Splunk.

Which option will satisfy this requirement in Prisma Cloud Compute?

Reveal Solution Hide Solution

DRAG DROP

Move the steps to the correct order to set up and execute a serverless scan using AWS DevOps.

Reveal Solution Hide Solution

Correct Answer:

Which two integrations enable ingesting host findings to generate alerts? (Choose two.)

Reveal Solution Hide Solution

In Azure, what permissions need to be added to Management Groups to allow Prisma Cloud to calculate net effective permissions?

Reveal Solution Hide Solution

A customer wants to harden its environment from misconfiguration.

Prisma Cloud Compute Compliance enforcement for hosts covers which three options? (Choose three.)

Reveal Solution Hide Solution

An administrator for Prisma Cloud needs to obtain a graphical view to monitor all connections, including connections across hosts and connections to any configured network objects.

Which setting does the administrator enable or configure to accomplish this task?

Reveal Solution Hide Solution

Which three AWS policy types and identities are used to calculate the net effective permissions? (Choose three).

Reveal Solution Hide Solution

Which type of compliance check is available for rules under Defend > Compliance > Containers and Images > CI?

Reveal Solution Hide Solution

DRAG DROP

An administrator needs to write a script that automatically deactivates access keys that have not been used for 30 days.

In which order should the API calls be used to accomplish this task? (Drag the steps into the correct order from the first step to the last.)

Reveal Solution Hide Solution

Correct Answer:

Explanation:

POST https://api.prismacloud.io/login

GET https://api.prismacloud.io/access_keys

PATCH https://api.prismacloud.io/access_keys/<id>/status/<status>

To write a script that automatically deactivates access keys that have not been used for 30 days, an administrator would need to follow an ordered sequence of API calls to the Prisma Cloud platform. The first API call must authenticate the script with the Prisma Cloud API, which is typically done using a POST request to the login endpoint. This step is necessary to establish a session and retrieve an authentication token required for subsequent API calls.

Once the script is authenticated, the next call is a GET request to the access_keys endpoint. This retrieves a list of all access keys within the environment. The script can then parse through these keys to determine which ones have not been used within the specified timeframe of 30 days.

For each access key that meets the criteria (unused for 30 days), the script must send a PATCH request to the specific access key’s endpoint, which includes the access key ID and the desired status. This request will change the status of the access key to ‘inactive’ or a similar status that denotes deactivation.

Following this ordered sequence ensures that the script systematically authenticates, evaluates, and updates the status of access keys based on their usage, thereby maintaining security and compliance within the Prisma Cloud environment.

DRAG DROP

Which order of steps map a policy to a custom compliance standard? (Drag the steps into the correct order of occurrence, from the first step to the last.)

Reveal Solution Hide Solution

Correct Answer:

Explanation: