PSE-PrismaCloud PSE Palo Alto Networks System Engineer Professional - Prisma Cloud Questions and Answers

number of alerts generated

number of accounts onboarded

number of monitored workloads

volume of flow logs consumed

run the PAN-OS CLI command: set system mgmt-interface-swap enable yes

run the PAN-OS CLI command: set system mgmt-interface-swap setting enable yes

create a bootstrap file that includes the mgmt-interface-swap command

in the Google Cloud Console Metadata Field, enter a key-value pair where mgmt-interface-swap is the key and enable is the value

Use the default Vulnerability Protection Profile to protect clients from all known critical, high, and medium-severity threats

Clone the predefined Strict Profile, with packet capture settings disabled

Use the default Vulnerability Protection Profile to protect servers from all known critical, high, and medium-severity threats

Clone the predefined Strict Profile, with packet capture settings enabled

Microsoft Azure

Alibaba Cloud

Oracle Cloud

Amazon Web Services

It requires Linux images to rely on optimizing registry scans due to various Linux elements.

It is only necessary in registries with tens of thousands of repositories and millions of images.

It is best practice to always optimize registry scans for faster results.

It is rarely successful in the Windows Operating System (OS).

Generate a new Compliance Report.

Create compliance framework in a spreadsheet then import into Prisma Public Cloud.

From Compliance tab, clone a default framework and customize.

From Compliance tab > Compliance Standards, click "Add New."

Cloud Workload Protection (CWP)

Cloud Code Security

Cloud Network Security

Cloud Identity Security

Direct Connect

Fast Connect

IPsecVPN

ExpressRoute

Configure an Inventory report from the "Alerts" tab.

Write an RQL query from the "Investigate" tab.

Open the Asset dashboard, filter on Amazon Web Services, and click "Amazon RDS" resources.

Generate a compliance report from the Compliance dashboard.

Cortex Data Lake

Cloud Storage buckets

Prisma Access Gateways

Compute Engine instance

Microsoft Azure

Alibaba Cloud

Amazon Web Services

Oracle Cloud

GDPR

EU Data Protection Directive 95/46/EC

ISO 27001

Payment Card Industry 3.0

Clone the existing policy and change the value.

Click the gear icon next to the policy name to open the "Edit Policy" dialog.

Manually create the Resource Query Language (RQL) statement.

Override the value and commit the configuration.

source address translation

destination address translation

port address translation

source and destination address translation

Excessive login failures

Unusual user activity

Denial-of-service activity

Account hijacking attempts

Suspicious file activity

UUID

new Auth Code

CPU ID

API Key

config where api.name = 'azure-vm-list' AND json.rule = powerState = "off'

config where api.name = 'azure-vm-list' AND json.rule = powerState does not contain "running"

config where api.name = 'azure-vm-list' AND json.rule = powerState = "running"

config where api.name = 'azure-vm-list' AND json.rule = powerState contains "running"

SNS

SQS

CodeDeploy

Lambda

CloudFormation is a procedural configuration management tool.

CloudFormation templates can be used on both Amazon Web Services and Microsoft Azure

CloudFormation templates can be written in JSON or YAML

CloudFormation is a declarative orchestration tool.

Override the value and commit the configuration.

Clone the existing policy and change the value.

Manually create the RQL statement.

Click the Gear icon next to the policy name to open the Edit Policy dialog

config where api.name = 'aws-ec2-describe-volumes, AND json.rule = tags[*]key contains DataClassification

config where api.name = ,aws-ec2-describe-volumes' AND json.rule = tags[*]key != DataClassification

config where api.name = ,aws-ec2-describe-volumes' AND json.rule = tags[*].key exists

config where api.name = 'aws-ec2-describe-volumes' AND json.rule = tags[*].key = 1

Anomaly

Audit Event

Configuration

Network

Generate a Center for Internet Security (CIS) compliance report and search for "Amazon RDS" policy violations.

View the alert data on the "Asset Inventory" dashboard and filter on "Amazon RDS.

Within the "Alerts" tab. filter on "Amazon RDS" as a service.

Create a custom Resource Query Language (RQL) configuration report.

consistent controls from build time to runtime

prebuilt and customizable polices to detect data such as personally identifiable information (PII) in publicly exposed objects

support for multiple languages, runtimes and frameworks

continuous monitoring of all could resources for vulnerabilities, misconfigurations, and other threats

Internet Gateway

Transit Gateway

Virtual Private Gateway

Customer Gateway

Azure SQL database instances

Google Kubernetes Engine

Oracle Functions service

Kubernetes DaemonSet

Policy rule order has little impact on optimization.

Prisma Cloud scans images in all containers immediately upon policy activation.

The default vulnerability policy rule has an alert threshold to critical.

Prisma Cloud ships all vulnerability policy with a default alert for containers, hosts, and serverless functions.

Service project

Host project

Admin project

Subscribing project

event where crud = 'delete’ AND subject = 'user1'

event where crud = 'delete'

event where crud = 'delete' AND subject = 'user1' AND cloud.type = 'aws'

event where subject = 'user1'

CloudLog

CloudEvent

CloudWatch

CIoudTrail

DigitalOcean

Azure

IBM Cloud

Oracle Cloud